Emerge Talent Cloud - Rochester, NY

posted 4 days ago

Full-time
Rochester, NY

About the position

The IT Compliance Analyst at Prestige Consumer Healthcare is responsible for ensuring compliance with IT policies and procedures, particularly in relation to Sarbanes-Oxley and NIST CSF standards. This role involves risk mitigation, optimization of security processes, and managing cybersecurity training programs. The analyst will work closely with internal and external auditors, manage vendor security compliance audits, and create regular reports for senior management.

Responsibilities

  • Work with internal and external auditors to manage Sarbanes-Oxley Compliance and Segregation of Duties.
  • Keep all global IT SOPs current and reviewed on an annual basis.
  • Create and update all IT policies and procedures related to NIST CSF compliance.
  • Manage the Cyber Security training program and fake phishing attacks to company employees.
  • Train staff on new security policies and procedures.
  • Manage vendor security compliance audits and support recommendations.
  • Lead efforts in collecting and organizing written responses and documentation from vendors.
  • Schedule and coordinate vulnerability assessments and penetration tests.
  • Organize and conduct meetings of the firm’s cloud security review team.
  • Create and present regular reports to IT senior technology management.
  • Make recommendations and advise on organization-wide processes.

Requirements

  • A bachelor’s degree or higher education diploma.
  • Minimum of 2-3 years of experience focused on information security.
  • Minimum of two years of experience applying project management concepts.
  • Background in working with auditors for Sarbanes-Oxley compliance.
  • Familiarity with NIST CSF compliance.
  • Knowledge of Cloud compliance and dealing with 3rd party vendors.
  • Experience in developing Global SOPs and IT policies and procedures.
  • Excellent written and verbal communication skills.
  • Must have business process knowledge.

Nice-to-haves

  • Experience in Cyber Security training and controls.
  • Self-starter in developing original documents and policies.
  • Enterprise level experience with solutions and driving continuous improvement.

Benefits

  • Hybrid work schedule allowing remote work on Mondays and Fridays.
  • Competitive salary range of $90k - $100k.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service