Business Development Representative creating and managing lead generation pipelines for cybersecurity solutions. Engaging with enterprise clients in Switzerland and Germany in a hybrid work model.
TC
Hybrid Senior Security Specialist, Compliance
Posted 2 months ago
About the role
- Senior Security Specialist ensuring compliance and security measures at Disney. Supporting audit processes and collaborating on risk assessments to enhance cybersecurity.
Responsibilities
- Independent audit support for: SOX 404 ITGCs, PII, PCI, ISPS
- Perform control health checks and remediation testing procedures to address issues identified via audit assessments, internal or external audits, and/or other assessments.
- Participate in audit walkthrough meetings to gain operational comfort in the design of the Company’s automated controls.
- Participate in Audit Readiness efforts to ensure proper system scoping and respective ITGCs, control validations and timely program onboarding
- Perform impact analysis and risk assessment on deficiency findings and documentation associated with the assessment
- Execute control finding investigation and record in internal SOCD/SAD
- Provide requirements input to Development leads to identify and implement automation and efficiency opportunities to meet governance and compliance demands.
- Provide program status updates to management
- Primary liaison between external/internal auditors and tech organization and ensure proper audit evidence is delivered to auditors
- Work with management and internal audit on maintaining the master Risk and Control Matrix over the systems
- Collaborate with engineers on designing controls in their environment
Requirements
- Minimum of 5+ years of IT SOX experience and proven experience in supporting IT audit/compliance functions
- Thorough understanding of SOX ITGC, PCI and ICFR 404 standards and audit objectives
- Interpersonal skills with the ability to work with teams cross-functionally
- Strong verbal and written communication skills
- Ability to effectively communicate to technical and non-technical audiences
- Highly organized and efficient
- Ability to navigate through ambiguity, manage and coordinate multiple project assignments simultaneously in a fast-paced, deadline-driven environment, accepting ownership and accountability of the process and deliver on commitments
Benefits
- A bonus and/or long-term incentive units may be provided as part of the compensation package
- Full range of medical, financial, and/or other benefits, dependent on the level and position offered
Job title
Job type
Experience level
Salary
Degree requirement
Location requirements
Information Security Officer responsible for developing and implementing security strategies at an IT service provider for the food and beverage industry. Engaging with teams and management on cyber risks and compliance.
Information Security Manager leading CISOaaS or GRC consultants for NVISO in Germany. Enhancing clients’ cybersecurity posture and driving strategic security initiatives.
Técnico de Segurança do Trabalho JR assisting with safety documentation and training for field activities at Arcadis. Focused on sustainable solutions in engineering and consulting.
Infra Security Engineer focusing on endpoint security solutions in South Korea's urban mobility services. Collaborating on security architecture and threat detection initiatives.
Compliance Specialist managing documentation and policies for Orro's Information Security Management System. Supporting essential compliance activities across ISO 27001 and IRAP with strong attention to detail.
Senior Security Engineer managing the vulnerability management program and collaborating with engineering teams at Causaly. Focused on cloud security and secure coding practices.
Senior Cyber Security Consultant supporting client cybersecurity development initiatives. Job focuses on administrative and technical aspects of cybersecurity within a collaborative consulting team setting.
Vice President of Infrastructure Security overseeing enterprise - level cyber risk across platforms. Partnering with infrastructure and technology leaders to ensure secure, resilient, and compliant services.
Assistant Vice President providing cybersecurity advisory across enterprise infrastructure at State Street. Supporting technology outcomes in secure and resilient ways across cloud, hybrid, and on - prem environments.