Information Security Regulatory Compliance, Sr (Remote)
Job ID268761 Location Atlanta, Georgia Full/Part TimeFull-Time Regular/TemporaryRegular
Job Summary Maintain a continuous state of compliance across multiple frameworks and regularly monitor the effectiveness of the compliance program. Responsible for assessing and ensuring compliance for all campus entities against applicable regulations and standards. Ensure security controls are operating effectively, conduct information security audits and risk assessments, and design risk mitigation plans. This position will interact on a regular basis with: unit management. This position typically will advise and counsel: unit staff and management. This position will supervise: NA
Job Summary Manage risk and vulnerability assessments, validation testing, compliance reviews, and audits by cyber security standards. Manage and support audits. Promote widespread implementation of cyber security standards. Maintain and monitor a central repository for audit evidence. Inform the proper stakeholders of important concerns and hazards. Work together with other stakeholders to link IT, procurement, and privacy departments with GRC objectives. Maintain up-to-date knowledge of procedures and methods that serve to broaden team knowledge and cyber security expertise. Manage security standards, policies, and practices on an annual basis to make sure they meet demands. Assist the unit in responding to inquiries about ongoing operational compliance. Be proactive in seeking out areas for improvement and offer insightful advice and value-added guidance on process and control enhancements. Direct experience in information security, with a primary emphasis on risk and compliance Knowledge of relevant regulatory compliance requirements (NIST, GLBA, FERPA, CMMC, PCI, GDPR, etc.) Knowledge of GRC tool techniques and best practices Organizing and carrying out risk and compliance projects Ability to assist with managing third-party audits, compile evidence, and/or organize audit responses Keen attention to detail Effective written and verbal communication skills and the capability to communicate with cross-functional teams Proven analytical and problem-solving abilities for managing initiatives that advance goals Effective communication with managers and stakeholders to avoid compliance blockers, projects, compliance gaps, change management Responsibilities Job Duty 1 - Perform information security compliance audits.
Job Duty 2 - Design risk mitigation plans.
Job Duty 3 - Monitor information security compliance requirements and obligations.
Job Duty 4 - Provide information security compliance consulting to campus units.
Job Duty 5 - Develop and deliver information security compliance training.
Job Duty 6 - Perform other duties as assigned
Required Qualifications Educational Requirements Bachelor's Degree or an equivalent combination of education and experience
Required Experience Four to six years of job related experience
Preferred Qualifications Additional Preferred Qualifications Certified Information Systems Security Professional or Certified Information Systems Auditor. Systems Security Certified Practitioner (SSCP). Rotating shift duty may be required.
Preferred Educational Qualifications Bachelor's Degree in Business or Technical field
Salary Range: $73,903 - $100,507
Location- Atlanta , GA
Job Grade: I5
Knowledge, Skills, & Abilities SKILLS This job requires proficient skills in office related computer applications.
Equal Employment Opportunity The Georgia Institute of Technology (Georgia Tech) is an Equal Employment Opportunity Employer. The University is committed to maintaining a fair and respectful environment for all. To that end, and in accordance with federal and state law, Board of Regents policy, and University policy, Georgia Tech provides equal opportunity to all faculty, staff, students, and all other members of the Georgia Tech community, including applicants for admission and/or employment, contractors, volunteers, and participants in institutional programs, activities, or services. Georgia Tech complies with all applicable laws and regulations governing equal opportunity in the workplace and in educational activities.
Georgia Tech prohibits discrimination, including discriminatory harassment, on the basis of race, ethnicity, ancestry, color, religion, sex (including pregnancy), sexual orientation, gender identity, gender expression, national origin, age, disability, genetics, or veteran status in its programs, activities, employment, and admissions. This prohibition applies to faculty, staff, students, and all other members of the Georgia Tech community, including affiliates, invitees, and guests. Further, Georgia Tech prohibits citizenship status, immigration status, and national origin discrimination in hiring, firing, and recruitment, except where such restrictions are required in order to comply with law, regulation, executive order, or Attorney General directive, or where they are required by Federal, State, or local government contract.
All members of the USG community must adhere to the USG Statement of Core Values, which consists of Integrity, Excellence, Accountability, and Respect. These values shape and fundamentally support our University¿s work. Additionally, all faculty, staff, and administrators must also be aware of and comply with the Board of Regents and Georgia Institute of Technology's policies on Freedom of Expression and Academic Freedom. More information on these policies can be found here: Board of Regents Policy Manual | University System of Georgia (usg.edu).
Other Information This is not a supervisory position. This position does not have any financial responsibilities. This position will not be required to drive. This role is not considered a position of trust. This position does not require a purchasing card (P-Card). This position will not travel This position does not require security clearance.
Background Check Successful candidate must be able to pass a background check.
|