Security Compliance Specialist (7123BR) New York, New York
Responsible for conducting Compliance Management activities for the Information Security Group
Information System control mapping (mapping controls to regulatory requirements)
Conduct Information Security Program Self Assessments and benchmarks
Analyze Regulatory Changes, and impact on Security Processes
Manage the Security Process Catalog
Experience with ISO 27000 controls
Knowledge of US Privacy laws and regulations (HIPAA, GLB, state privacy laws)
Knowledge of US Financial laws and regulations (SOX)
Experienced with MS Excel
CISSP or CISM or equivalent experience
Experienced using Archer or other GRC tools
Must be self motivated, and able to work independently.
Must be able to work as a member of a team.
Strong communication skills, and able to effectively work with a variety of people.
Experienced with IT Auditing
Desirable to be able to backup other members of the security team.
Experience with Security technologies and products desired