A client in the Retail/Convenience Store industry is seeking a full-time/permanent employee to join their team as an IT Compliance and Security Analyst. The analyst will report to the Enterprise Infrastructure Manager and collaborating with the IT team as well as cross-functionally across the business teams to ensure adherence to IT policies, procedures, and regulatory requirements.
Responsibilities:
* Lead IT compliance programs (PCI, PII, NIST, SOC1/2, SOX).
* Create and enforce IT standard operating procedures and controls.
* Manage IT audits and privacy inspections.
* Develop solutions for system deficiencies and improve IT processes.
* Complete regulatory documentation, including PCI compliance.
* Oversee external service providers for SLA compliance.
* Approve network security changes ensuring they meet regulatory requirements.
* Conducting risk assessments and developing mitigation strategies.
* Develop and implement disaster recovery and business continuity plans.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
HR@insightglobal.com.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
4+ years in IT Compliance and Information Security field
Strong knowledge in information security compliance such as PCI, NIST, PII, SOC1/2, SOX, etc.
Ability to create and document compliance policies and procedures with strong attention to detail.
Understanding of data privacy and cybersecurity laws.
Experience in disaster recovery and business continuity planning.
Familiarity with SIEM tools, vulnerability assessment, and antivirus software
Skilled in IT security auditing process ensuring compliance to all regulations.
Self-starter with the ability to work independently
Previously working in a small team responsible for leading vision for IT compliance with limited guidance
Previous Technical Writing experience
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.