Information Security Compliance Analyst

5 days ago

🏖️ New Jersey – Remote

Although this job is listed in New Jersey, this company may be open to hiring remote in other states.

💵 $84.2k - $122k / year

⏰ Full Time

🟡 Mid-level

🟠 Senior

🔐 Security Analyst

🦅 H1B Visa Sponsor

Apply Now

Receive Emails with Similar Jobs

Holman

WebsiteLinkedInAll Job Openings

Holman offers a unique set of complementary services that address your changing needs. From fleet management, upfitting, vehicle accessories, vehicle sales, insurance, investing in the future of mobility, or all the above, we listen, we think, and we create solutions just for you.

Fleet Management • Parts and Logistics • Automotive Sales • Upfitting and Equipment • Growth Ventures

5001 - 10000 employees

📋 Description

• Serves as a lead internal consultant ensuring security and compliance needs are factored into processes, projects, services and applications. • Advises management on best practices, current trends, and pertinent changes in internal/external threats and opportunities. • Presents action plans for implementation/approval. • Leads development and implementation of new policies and procedures to meet data security, client organization and compliance needs. • Provides security communication, awareness and training for diverse audiences. • Establishes, monitors and tests controls supporting audit readiness. • Works with Control Owners to create, adjust and maintain effective and efficient practices. • Leads preparation and delivery of evidence and facilitates walkthroughs for audits. • Performs programmatic third party assessment and review, identifying and escalating matters of concern. • Designs, implements and maintains effective information security controls; evaluates and reports on security risks. • Satisfies auditor, client and customer requirements for information security. • Identifies, classifies, tracks, communicates, and mitigates potential exposures. • Utilizes threat modeling to project and justify control implementations. • May lead investigation and response for data security or compliance incidents. • Monitors compliance with information standards and reports on non-conformities. • Works with clients to address client assurance needs.

🎯 Requirements

• 6 – 8 years’ experience in Information Security, IT Compliance & Risk Management. • Substantial experience with Iaas, PaaS, SaaS and traditional infrastructure and application security controls. • Expertise and experience with common information security management frameworks, standards and assurance practices, such as ISO 27001 & 27002, NIST, COBIT, SOC reporting, PCI and ITIL. • Expertise and experience with assessing, evaluating, mitigating and reporting on data security and compliance risk. • Firm understanding of new and emerging privacy standards, principles and associated practices. • Extensive experience in developing and documenting security controls, data security risks, architectures and data lifecycles. • Bachelor’s degree in Computer Sciences, Information Systems or another related field. • Holds professional certifications such as CISSP/CRISC/GIAC/CISA/CISM. • Strong technical knowledge including networking, system, SDLC, general computing controls and cloud security controls. • Strong knowledge of applicable legal and regulatory requirements, including, but not limited to, Payment Card Industry (PCI), GDPR, CCPA, GLBA, NYDFS etc. • Very strong verbal and written communication skills. • Ability to communicate security and compliance issues to both technical and non-technical audiences required.

🏖️ Benefits

• Health Insurance • Vision Insurance • Dental Insurance • Life and Disability Insurance • Flexible Spending and Health Savings Accounts • Employee Assistance Program • 401(k) plan with Company Match • Paid Time Off (PTO) • Paid Holidays, Bereavement, and Jury Duty • Paid Pregnancy/Parental leave • Paid Military Leave • Tuition Reimbursement