Please send resume in Word format if you are interested in this IT Compliance Manager opportunity with our client in Long Island City, New York 11104. Salary range for this opportunity is 100K-120K, no bonus, solid benefits If you are not interested, please pass along, as we do offer referrals. The IT Compliance Manager's role is to assess and oversee all technology-related compliance issues across the organization including regulatory, information security, data privacy, business continuity, identity management, user access and data integrity. This includes providing objective risk assessments of the company's compliance with all regulatory, organizational and commercial requirements governing the organization's information technology and security systems. The IT Compliance Manager will also direct the development and implementation of ITInformation Security policies, procedures and controls to ensure that client s practices remain observant to all pertinent local, state, federal and global laws and industry standards. In this role, the IT Compliance Manager will also work directly with some non-IT professionals such as Legal, Information Security, Finance, Internal Audit, External Auditors, Human Resources and Corporate Compliance to ensure organizational alignment. This position is also responsible for supporting the Chief Information Security Officer in the conducting of PCI-DSS, IT SOx 404, EU GDPR, a third-party vendor and data privacy audits on an annual basis. Major Responsibilities Determine and maintain an inventory of all regulatory, commercial and organizational technology compliance requirements. Assists with the company's annual PCI audit, filing, and development of the SAQ and Attestation of Compliance. Review required external vendor SSAE18 SOC 1 and SOC 2 documentation. Facilitate the creation and upkeep of all technology compliance policies. Create an IT compliance risk assessment scorecard and periodically assess the regulatory, commercial, governmental and organizational IT compliance risks. Identify the associated IT compliance control gaps and oversee the documentation, implementation, testing and remediation of the entire IT compliance control portfolio. Assists with the annual IT SOx internalexternal audits and remediation planning. Reviews and creates periodic audit reports on user access and system activities. Develop and direct IT compliance control monitoring programs to ensure IT compliance-related risks are managed to the appropriate level of acceptable corporate risk. Implement and maintain an IT compliance issue management tracking and resolution process that will address known issues, according to severity and potential impact to the organization. Report the levels of IT compliance risk and control effectiveness to key stakeholders such as IT-business unit management, senior management, the board of directors, legal, regulators, internalexternal auditors, etc. Coordinate audit-related tasks such as ensuring the readiness of IT managers and their organizations for audit testing and facilitating the timely resolution of any audit findings. Provide technical advice and insight on compliance requirements to business leaders. Assist business and IT managers with the acquisition of tools and applications to assist with IT compliance-related projects, audits, and initiatives. Familiarity with developing business impact analysis (BIA) and business continuity plans. Assist with the conducting of external vendor audits for all vendors that we share systems and data. Create an IT compliance training and awareness program that periodically educates the user community on the relevant IT compliance requirements, and certifies their adherence to the relevant IT compliance controls. Requirements 3 - 5 years of IT Compliance, Information Security and Audit experience. Technical proficiency in IT compliance and audit support software and tools. Ability to function as a subject matter expert to other ITbusiness groups on compliance-related matters. Knowledge of IT security controls for midrange computers, servers, databases, PCs, laptops, and tablets. General understanding of various computer-operating environments, including MS-Windows, AS400, UNIX, Cisco, MAC, and tablets. Solid knowledge of the Sarbanes Oxley Act (SOx), EU GDPR and PCI-DSS compliance. Excellent verbal and written communications skills ability to present and discuss information in a way that establishes rapport, persuades others and gains understanding. Ability to adequately maintain an up-to-date knowledge of the IT compliance and regulatory industry including awareness of emerging or updated global data privacy laws. Familiarity with the NIST, ITIL, COBIT, ISO 27000 and PCI-DSS cybersecurity frameworks and their subsequent components. Working knowledge of IT processes, such as change management, general computer operations, user access control, and project governance. Experience with risk analysis tools, technologies, and policies while understanding of business impact. Proficiency in performing risk, business impact analysis, control and vulnerability assessments, and in defining remediation strategies.Associated topics: chief program officer, cpo, manage, manager, management, monitor, product manager, project manager, relationship manager, task Associated topics: chief program officer, cpo, manage, manager, management, monitor, product manager, project manager, relationship manager, task
* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.