Jobs

Apply for job

IT Compliance Analyst

Our direct client located in Duchess County, NY seeks an IT Compliance Analyst to join the team on a full-time basis.  This well-established company offers a hybrid work environment 3-4 days WFH, 1-2 days onsite) and has terrific benefits as well as a competitive salary.

Position will start as a contract, and offers potential to convert to F/T after 6 months.  Company has terrific benefits, and competitive salary and bonus potential.  

This staff level role is within the Information Technology Compliance team which supports the company’s IT risk and compliance activities to protect the confidentiality, integrity, and availability of the firm's information and technical environments and enterprise goals and objectives. Title/level is commensurate with experience.

 

Responsibilities Include:

 

  • Performs Information Technology (IT), Operational Technology (OT) and critical application and vendor security risk assessments while balancing business requirements against necessary security and process controls, including timely completion of risk mitigation action plans
  • Performs and collaborates with company personnel in the documentation and performance of key processes and controls to meet compliance requirements with Sarbanes Oxley,  Payment Card Industry Data Security Standards and NERC Critical Infrastructure Protection Standards
  • Assists in the development and ongoing maintenance of IT and OT documentation including policies and procedures
  • Provides compliance support for all regulatory requirements pertaining to IT, OT, and cyber security which includes monitoring the legal and regulatory landscape to proactively address new requirements
  • Investigates reports of non-compliance and provides recommendations for corrective actions, documents and reports on compliance issues and incidents
  • Provides process improvements guidance to IT, OT, and business areas in support of compliance initiatives and assists in implementation of improvements required to maintain compliance to laws, regulations, and industry standards
  • Coordinates with internal auditors and outside consultants on control assessments, including gathering requested documentation for consultants and developing and implementing action plans to address any findings
  • Provides support for storm/emergency restoration efforts
Required & Desired Experience:
  •  
  • Bachelor’s degree and work experience in IT Compliance, IT Risk Management, and/or IT Audit. In lieu of a bachelor’s degree, candidates with an associate’s degree and 3+ years of related experience and candidates with a high school diploma or equivalency degree and 5+ years of related experience will be considered.
  • Familiarity with and proficiency in implementing Sarbanes Oxley (SOX) pertaining to IT controls
  • Well-developed written and verbal communication skills and presentation skills
  • Proven interpersonal, facilitation, negotiation, planning, organizational, and problem-solving skills
  • Ability to work collaboratively with all business areas throughout the organization
  • Ability to work with minimal supervision and work well under pressure including adapting to a variety of assignments and deadlines
  • Valid driver’s license
  • Field of study in Information Security, Information Assurance, Management Information Systems, Computer Information Systems, Computer Science, Information Technology, or a related field
  • Familiarity with industry recognized best practices such as: NIST Cybersecurity Framework, NIST Special Publications, COBIT, ISO 27001, Critical Security Controls, NERC Critical Infrastructure Protection Standards, PCI DSS and Generally Accepted Privacy Principles
  • One or more of the following certifications: CISA, CISM, or CRISC

 

Job ID: 4958

Chat with a recruiter

Can't Find The Job You're Looking For?

Share this Opportunity?