Security & Compliance Specialist

Information Technology
in Orlando
, FL
Reference: 19-03916
  • Developing the overall timelines and project plans for SOX, PCI or other compliance programs, including the following types of activities: collection and QA of requested documentation, process and control walkthroughs, testing, observations/interviews with Auditors, and remediation to address any control gaps
  • Developing the overall timelines and project plans for Systems Implementation testing to ensure that new/modified applications and systems meet SOX control requirements
  • Working with the internal and external auditors as they conduct their audits; this could include coordinating and facilitating site visits, providing them with all requested documentation, and addressing resulting questions or concerns
  • Partnering with internal stakeholders, of varied leadership levels, with responsibility for in-scope applications to educate them on compliance requirements, ensure appropriate controls are in place to meet the requirements, and assist them with outlining remediation plans to address any deficiencies
  • Coordinating and supporting the team in various other areas of work as those activities are defined; This may include such things internal team projects, quarterly user access reviews, following up on outstanding non SOX/PCI remediations, assisting in the preparation of status and other reports, documenting SOPs, etc.
  • Providing work direction to off-shore compliance team members
  • Working with Corporate resources to ensure alignment with the overall enterprise Compliance programs
Preferred Qualifications:
  • Expert project/program management skills, with strong emphasis on organization, communication and prioritization skills
  • Demonstrated verbal and written communication skills
  • Demonstrated record of taking initiative and thorough follow thru
  • Self-starter with the ability to manage multiple tasks concurrently
  • Strong leadership, analytical and decision-making skills
  • Strong negotiation and influencing skills
  • Ability to build and maintain constructive working relationships with a diverse community of technical and non-technical audiences
  • Demonstrated experience in identifying compliance risk and development of mitigation/remediation plans
  • Ability to work in large global environments spanning multiple time-zones
Basic Qualifications:
  • 8+ years of IT audit or IT compliance experience
  • 8+ years of program and project management experience
  • Ability to understand technical risks and issues and recommend solutions to address
  • Ability to communicate technical concepts in business terms
  • Ability to articulate IT compliance requirements and design IT controls
  • Experienced with Archer/RSA GRC tool or similar compliance/remediation tools
  • CISA certification required