Responsible for daily treasury management and compliance at Lyreco, a leading workplace solutions provider. Collaborating with international teams to optimize cash positioning and financial results.
About the role
- Privacy Analyst II leading governance, risk, and compliance initiatives for Allegiant air carrier. Collaborating across departments to strengthen privacy practices and support responsible data handling.
Responsibilities
- Lead governance, risk, and compliance initiatives with a strong focus on privacy program management, website cookie compliance, and data governance.
- Collaborate across Legal, Security, IT, Marketing, and business teams to strengthen privacy practices and support responsible data handling.
- Perform risk assessments for IT including identifying the risks presented by technological and process changes as well as review of supporting processes/ procedures, etc. to ensure the proper controls are in place and risks are appropriately mitigated.
- Participate in maintaining the risk register and support continuous improvement of IT risk management processes.
- Write effective controls and action plans for any deficiencies.
- Assist in the development of risk metric and reporting frameworks for IT Risk & Compliance. Deliver these metrics and reports on weekly, monthly and quarterly basis.
- Define action plans and timelines with process owners and manage them to completion/implementation.
- Assist with Information Security Incident Management: Investigate, document and report on incidents that impact confidentiality, integrity and/or availability.
- Support the administration of IT policies, standards and procedures.
Requirements
- Bachelor’s Degree
- Minimum four (4) years of experience in Internal Audit (IT Audit preferred), IT Risk, or Information Security.
- Knowledge of project management skills (task identification, prioritization, and documentation).
- Demonstrated ability to effectively balance multiple responsibilities which may frequently change.
- Ability to learn information quickly and apply risk/control considerations which impact downstream decisions.
- Ability to interface effectively with internal and external auditors.
- Critical thinking skills with strong attention to detail and follow up.
- High degree of professionalism and personal integrity.
- Ability to work with a high degree of independence.
- Excellent documentation skills (process, control, policy, and risk documentation).
- Excellent verbal and written communication skills across all levels of personnel (through executive management and the Board of Directors).
- Knowledge of and experience with performing ongoing risk analysis to determine what customer services, supporting business processes, systems, components and applications need to be recovered and within what time frame in order to comply with recovery time objectives.
- Familiarity with internet, networking (LAN and WAN), data and voice telecommunications, and cloud computing in order to assist in the preparation of recovery procedures in these areas.
- Good knowledge of Industry "Best Practices" such as ISO 27001, PCI-DSS.
- Good knowledge of TCP/IP and related protocols.
- Familiarity with intrusion detection and prevention techniques.
- Ability to conduct research into security issues and products as required.
- Familiarity of standard risk management/control frameworks such as COBIT, ISO 27005, COSO, NIST 800-30, and ITIL.
- Understanding of internal audit and risk-based methodologies.
- Sarbanes-Oxley (SOX) experience.
- Understanding and experience with NIST and PCI standards.
- Strong experience in any of the following areas: IT Audit, IT Risk and/or Information Security.
- Demonstrated proficiency in assessing risk and risk management practices.
- Possesses knowledge of IT policies, standards and procedures, security frameworks and their development and implementation.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Digital Services Analyst supporting digital products and sales efforts. Provide timely support to clients and internal colleagues while managing service tickets and projects.
Product Filing Analyst responsible for drafting and securing regulatory approval for insurance contracts. Assessing regulatory impacts and conducting quality reviews for compliance and effectiveness.
Complaints Analyst investigating and responding to customer complaints for Coinbase. Collaborating with legal teams and optimizing internal processes for a growing crypto platform.
Claims Coding Analyst handling claims editing and provider disputes at Healthfirst. Ensuring policy compliance with CMS and other coding guidelines while leading continuous improvement initiatives.
Cyber Assurance Analyst responsible for DISA STIG compliance evaluations and security control validations. Collaborating with technical teams and maintaining cybersecurity standards at Kwajalein Atoll.
Junior ESG Analyst supporting research and analysis on ESG factors for sustainability - focused organizations. Collaborating on data analysis and stakeholder engagement to drive positive impact in solar industry.
Consumer Analyst supporting KeyBank’s Language Access Program ensuring equitable access to banking for clients with diverse language backgrounds. Manage translation workflows and enhance language resources across the enterprise.
Cyber Defense Analyst managing security incidents within Eversource's Security Operations Center. Overseeing compliance, incident response, and audits for information security across systems.
Senior Project Controls Analyst analyzing project data and guiding Power BI Analysts at Eversource. Responsible for monitoring project performance in the capital program across multiple departments.