Job description
Overview:
Responsible for the definition and oversight of the IT controls framework, the IT Compliance Lead enforces the performance of IT control activities, tracks and maintains evidence of controls, and serves as functional point of contact for all IT audit activities. IT Compliance Lead may also perform specialized audits to identify control gaps to be added to the IT controls framework.
Job Description:
- Minimum 6 years’ experience in internal audit
- 6-9 years’ experience in information technology
- Experienced in HiTrust, PCI, SOC and Healthcare IT
- Proficiency in identifying IT control gaps
- In depth knowledge of CobIT, ISO/IEC 27002, NIST 800-53, and/or other information security control frameworks or standards
- Knowledge of IT processes and lifecycles
- Understanding of compliance management obligations (including statutory obligations), requirements and dynamic
- Effective interpersonal skills
- Effective verbal and written communications skills
- Critical thinking and analytical skills
- Ability to manage disparate team requirements according to a risk prioritization
- Develops and implements plans to achieve goals and objectives for a broad range of administrative and/or technical people and/or activities
- Provides continuous communication of complex information and work results to higher and lower levels
- Decisions and actions have a multi-year impact on the company success
- Adapts tactical security and IT needs to the strategic needs of the company and long range programs and projects
- Understanding of HIPAA, HITECH, and PCI DSS compliance requirement
- Proficient with Microsoft Office (Word, Excel, PowerPoint, Project, Visio)
- Proficient with SharePoint for document management
- Bachelor’s degree in Computer Science or Computer Engineering
- Establish IT controls framework based on a subset of CobIT control objectives.
- Assign control activities to IT resources by function, and enforce timely completion.
- Gather artifacts as appropriate to evidence the completion of IT control activities.
- Assist with risk assessment, audit review, monitoring & managing compliance within the organization
- Maintain a repository of document artifacts sufficient to evidence diligent completion of controls and/or close oversight of the IT controls framework.
- Oversee IT’s performance of requirements necessary to maintain or achieve compliance with regulations or standards critical to the business.
- Identify IT control gaps, which cause unacceptable risk to the organization, and consult with IT teams to remediate and close the gaps.
- Facilitate a regular IT management attestation of controls fidelity to include time-based commitments to correct deficiencies.
- Assist in achieving complete compliance management systems in accordance with organization plans and adherence to legislation and agreed regulatory bodies’ processes and procedures
- Serve as primary point of contact with external auditors to facilitate the collection of audit artifacts, as well as the scheduling of interviews and observations.
- Manage the collection of responses for completion of customer IT and security questionnaires and attestations.
- Manage and maintain data repository of IT and Information Security responses and controls assertions suitable for responses to IT security questionnaires and attestations as well as inclusion in business RFP and RFI responses.
- Track and present IT-related audit findings to HPS management.
Monitor and track IT-related Management Audit Response commitments thorough to resolution
jjbodyshop.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, jjbodyshop.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, jjbodyshop.com is the ideal place to find your next job.