Director of Product Security leading cybersecurity initiatives for medical devices at LivaNova. Ensuring patient safety and compliance with regulatory demands across product lifecycle.
TC
Hybrid Senior Security Specialist, Compliance
Posted 3 hours ago
About the role
- Senior Security Specialist ensuring compliance and security measures at Disney. Supporting audit processes and collaborating on risk assessments to enhance cybersecurity.
Responsibilities
- Independent audit support for: SOX 404 ITGCs, PII, PCI, ISPS
- Perform control health checks and remediation testing procedures to address issues identified via audit assessments, internal or external audits, and/or other assessments.
- Participate in audit walkthrough meetings to gain operational comfort in the design of the Company’s automated controls.
- Participate in Audit Readiness efforts to ensure proper system scoping and respective ITGCs, control validations and timely program onboarding
- Perform impact analysis and risk assessment on deficiency findings and documentation associated with the assessment
- Execute control finding investigation and record in internal SOCD/SAD
- Provide requirements input to Development leads to identify and implement automation and efficiency opportunities to meet governance and compliance demands.
- Provide program status updates to management
- Primary liaison between external/internal auditors and tech organization and ensure proper audit evidence is delivered to auditors
- Work with management and internal audit on maintaining the master Risk and Control Matrix over the systems
- Collaborate with engineers on designing controls in their environment
Requirements
- Minimum of 5+ years of IT SOX experience and proven experience in supporting IT audit/compliance functions
- Thorough understanding of SOX ITGC, PCI and ICFR 404 standards and audit objectives
- Interpersonal skills with the ability to work with teams cross-functionally
- Strong verbal and written communication skills
- Ability to effectively communicate to technical and non-technical audiences
- Highly organized and efficient
- Ability to navigate through ambiguity, manage and coordinate multiple project assignments simultaneously in a fast-paced, deadline-driven environment, accepting ownership and accountability of the process and deliver on commitments
Benefits
- A bonus and/or long-term incentive units may be provided as part of the compensation package
- Full range of medical, financial, and/or other benefits, dependent on the level and position offered
Job title
Job type
Experience level
Salary
Degree requirement
Location requirements
Security Engineer driving modernization and improvements in KPMG's cybersecurity services. Engaging in technology evaluation, process innovation, and stakeholder communication.
Identity and Access Security Analyst at HII’s Newport News Shipbuilding focusing on SAP Security skills. Designing secure operating systems and conducting security assessments.
Risk Analyst supporting Keyloop’s Security Governance by managing information security risks. Identifying and monitoring risks while ensuring compliance with regulatory standards.
Cloud Security Engineer responsible for designing and implementing security controls for cloud environments at Keyloop. Ensuring secure adoption and compliance while working with platform and engineering teams.
IT Infrastructure & Security Engineer managing and developing network and server infrastructure at L - mobile. Collaborating on security measures and supporting internal audits in a hybrid role.
Ingénieur sécurité des procédés en alternance chez Arkema. Conception de e - learning et développement d’outils pour évaluer les risques industriels.
Cyber Security Consultant to deliver Wanstor’s security offerings and improve customer Cyber Security and Data Security. Involves consulting, implementation, and oversight of security measures.
Senior Manager in IT - Strategieberatung for Defense & Security, developing client relationships and growth strategies. Leading IT transformation projects in security - critical organizations.
Information Security Expert overseeing ISMS development and IT security compliance in Germany. Collaborates with management and leads regulatory requirements implementation.