Posted: Wednesday, May 10, 2017 6:44 PM
Assist the IT Security Audit Manager (A?ManagerA? ) in executing the framework for providing objective assessments of the CompanyA?s compliance with regulatory and organizational requirements governing the information technology systems (PCI:DSS, NIST 800:53/FedRAMP, FISMA, SOC II Type II, HIPAA, CJIS, etc.). The position will support the day:to:day operations, including interaction with outside resources. In addition, assist the Manager in performing complex and multifaceted audits and assessments of information technology to include: planning, coordinating, managing and reporting on all technology related audit and compliance activities. Responsible for timely completion of assigned audit reviews producing accurate, complete, and organized work papers. Perform an unbiased evaluation of audit results and provide recommendations for internal control improvements to management.IT COMPLIANCE INITIATIVES Perform internal compliance testing, documentation and follow:up for all compliance programs across the Company (PCI:DSS, NIST 800:53/FedRAMP, FISMA, CJIS, etc.)Provide SME:level advisory support services to IT and the business as it relates to regulatory and industry compliance issuesDocuments data flow processes, narratives, testing procedures and resultsMaintains the compliance database to ensure complete and timely reportingSupports relationships with key regulatory and industry assessment vendorsWorks alongside policy and standards team to incorporate changes into the enterprise policy document based on compliance assessment resultsLeads root cause and remediation activities for remediation activities and related information security issues3:5+ years of experience performing IT Compliance Initiatives, preferably PCI:DSS and NIST 800:53/FedRAMP initiativesQSA:certified or ISA:certified desired A. or B. S. Degree in Cyber Security Computer Science, MasterA?s degree preferredProfessional certification preferred: CISSP, CISA, CISM, CIPP, CIA, etc.Subject Matter Expertise of specific Regulatory Standards, specifically PCI:DSS, NIST 800:53/FedRAMP, FISMA, SOC II Type II, HIPAA, CJIS, COBITStrong experience in managing multiple projectsSubstantial knowledge of Information Security compliance and risk analysis, data privacy and other compliance requirements of an enterprise information security programStrong understanding of Information Security industry standards/best practicesStrong subject matter expertise in computer operations required; (e.g. In:depth knowledge of Windows/Unix operating systems, authentication methods, firewalls, routers, web services, etc.)Proficient with Microsoft Office SuiteExcellent verbal and written communication skills. Includes the ability to describe or explain complex processes and issues in a concise mannerAll qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or national origin.
• Location: North DFW
• Post ID: 52270803 northdfw