Information Security & Compliance Analyst Resume Sample
Work Experience
- Values. Demonstrates in word and action the Y’s core values of caring, honesty,
- Collaborate with the Legal, Business, Product, and Engineering teams to translate risk and legal regulations into product and system requirements
- Contribute to the development and oversight of required corrective action plans relating to security compliance issues
- Partner with leaders across the business to find opportunities, risks and deliver resolutions that support business strategies protecting Nvidia’s business interests globally
- Support the identification, implementation, and maintenance of automated technical security controls required by various technical regulatory compliance frameworks
- Join team members and multi-functional groups to ensure successful risk management programs
- Understand the security needs of internal and external partners, regulators, and auditors
- Participate in risk-based security assessments, develop mitigation plans, and work with internal partners to assign responsibility
- Aid with responding to external requests inquiring about Nvidia's Information Security program
- Strong written and oral communications skills. Ability to prioritize and work independently on a variety of projects or tasks
- Strong administrative skills, proficiency with office productivity software, MS Word, MS Excel, MS PowerPoint, MS Access, MS Visio, SharePoint, Wiki Markup Language
- Basic understanding of ethical hacking techniques, digital forensics, TCP/IP and related network protocols and services
- Basic understanding of information security principles, security technologies and practices in a corporate environment
- Active, industry recognized security certifications, ISC2, GIAC, CompTIA, ISACA
- Serve as a key member of the company’s Information Security Compliance Program by supporting ongoing compliance activities and monitoring efforts across different Regulations and GRC Standards (SOX, HIPAA, PCI, FEDRAMP, ISO, others) as applicable
- Serve as a key member of the company’s Information Security Compliance Program by supporting ongoing compliance activities and monitoring efforts across different Regulations and GRC Standards (SOX, HIPAA, PCI, others) as applicable
- Join daily technical security activities and functions such as assessing vendor security, provisioning and reviewing access, crafting and maintaining security reports/dashboards, etc
- Exceptional analytical and problem solving skills, attention to detail, wide knowledge of technology, security compliance and regulatory standards
- Strong interpersonal and organizational skills, including the ability to meet deadlines, develop written policies standards and procedures, and provide consistent and superior customer service
- Advanced skills to set work priorities and make independent decisions regarding recommendation for security controls, risk migration action plans and project constraints
- Team player and work in a cooperative manner with Technology, Audit and other units of the organization to provide appropriate information security control recommendation and policies that enable business objectives while meeting regulator obligations
- Willingness and ability to adapt to rapid changes in order to support and use emerging technologies
- Strong facilitation and project management skills and understanding of business process controls
- Independent/self-starter with excellent problem solving skills
- Two to four years of IT operations experience
Education
Professional Skills
- Strong project management skills Strong team player, ability to work effectively in a cross-functional team of both technical and non-technical people
- Strong multi-tasking skills with the ability to handle multiple priorities
- Demonstrates excellent communication skills (written, verbal, presentation), context, content, audience, etc
- Excellent written and verbal communication skills, able to author complete documents, articulate ideas and concepts effectively
- Strong oral and written communication skills in the English language to work effectively with all levels of IT personal as well as EY business stakeholders
- Advanced Microsoft Power Point skills, Office and advanced Excel skills; willingness to learn new office and/or data systems
- Excellent negotiation, mediation and persuasion skills to make recommendations and resolve contentious issues
How to write Information Security & Compliance Analyst Resume
Information Security & Compliance Analyst role is responsible for reporting, security, negotiation, analysis, finance, credit, training, integration, database, auditing.
To write great resume for information security & compliance analyst job, your resume must include:
- Your contact information
- Work experience
- Education
- Skill listing
Contact Information For Information Security & Compliance Analyst Resume
The section contact information is important in your information security & compliance analyst resume. The recruiter has to be able to contact you ASAP if they like to offer you the job. This is why you need to provide your:
- First and last name
- Telephone number
Work Experience in Your Information Security & Compliance Analyst Resume
The section work experience is an essential part of your information security & compliance analyst resume. It’s the one thing the recruiter really cares about and pays the most attention to.
This section, however, is not just a list of your previous information security & compliance analyst responsibilities. It's meant to present you as a wholesome candidate by showcasing your relevant accomplishments and should be tailored specifically to the particular information security & compliance analyst position you're applying to.
The work experience section should be the detailed summary of your latest 3 or 4 positions.
Representative Information Security & Compliance Analyst resume experience can include:
- Experience in Information Technology, including experience in auditing and security-related areas
- Project management, multitasking, and time management skills
- Support internal and external audits (including penetration tests) – tracking audit measures, resolution tasks, and reviewing evidence of compliance
- Continuous learning mentality, able to maintain existing skill-sets while progressively embracing new ones
- Experience documenting technical operating processes and procedures
- Prepare control implementation evidence including process, policy, data flow diagrams etc
Education on an Information Security & Compliance Analyst Resume
Make sure to make education a priority on your information security & compliance analyst resume. If you’ve been working for a few years and have a few solid positions to show, put your education after your information security & compliance analyst experience. For example, if you have a Ph.D in Neuroscience and a Master's in the same sphere, just list your Ph.D. Besides the doctorate, Master’s degrees go next, followed by Bachelor’s and finally, Associate’s degree.
Additional details to include:
- School you graduated from
- Major/ minor
- Year of graduation
- Location of school
These are the four additional pieces of information you should mention when listing your education on your resume.
Professional Skills in Information Security & Compliance Analyst Resume
When listing skills on your information security & compliance analyst resume, remember always to be honest about your level of ability. Include the Skills section after experience.
Present the most important skills in your resume, there's a list of typical information security & compliance analyst skills:
- Demonstrated strong organizational and negotiation skills
- Strong written and oral communication, analytical and problem solving skills
- Excellent verbal and written communication skills, including the ability to prepare documentation, policies, and build consensus across a broad group
- Work effectively and organize priorities independently
- Excellent written and verbal communication skills with an ability to communicate with a variety of stakeholders
- Prior experience in one or more of the following: cloud security, mobile device security, application security, security operations
List of Typical Experience For an Information Security & Compliance Analyst Resume
Experience For Information Security Compliance Analyst Resume
- Proactive, positive, and collaborative approach with demonstrated excellent verbal and written communication skills
- Interpret results and validate adequacy, reliability and effectiveness of controls
- Prior work experience in a a SaaS/Cloud company Security and Compliance group or Security & Risk practice of a Big 4 firm
- Strong background in designing, operating and conducting assessments of information security controls
- Experience in working with complex applications, networks, virtual environment security, cloud services, and systems operations
- In Project Management, Compliance, Auditing, IT Security or similar experience
- Solid understanding of Information security standards and IT frameworks (ISO27002, NIST, CoBIT, ITIL, ISF etc.)
- Support evidence collection with regards to various security compliance frameworks including NIST, PCI-DSS and ISO 27001
- Create and maintain internal and external audit schedules and prioritize, facilitate and track audit related processes, activities, tasks and deliverables
Experience For Senior Information Security & Compliance Analyst Resume
- Independently manage multiple priorities and projects
- Monitor the effectiveness of strategies, activities, measures, and controls designed to protect the College information resources
- Prioritize work, and handle multiple simultaneous tasks and deadlines. Ability to escalate when needed
- Experience in IT. Familiarity with regulatory compliance, specifically in a higher education environment
- Experience in the implementation of governance, risk, and compliance strategies
- Experience in Texas State government
- Successful experience
- Proven ability to manage projects and implementations across organizations in a complex enterprise environment
Experience For Senior Information Security Compliance Analyst Resume
- Computer literate with proficiency in Microsoft Office and Microsoft Project Microsoft Office, Information Security, GRC Platforms experience
- Make sound decisions based on precedent, data analytics, judgement and experience
- Working with external auditors/ assessors (SOC 2 Type 2 and PCI-DSS) to coordinate the audit efforts to ensure audit deliverables on a timely manner, including
- Work cross-functionally on planning and implementing corporate and business unit security programs to meet compliance requirements
- Develop recommendations for proactively remediating known issues
- Responsible for working with Technical Engineers, Vendors, SME’s, Project Managers, and Business Analysts to provide input into technical and functional compliance requirements if necessary
- Supports and coordinates controls testing and quality assurance activities to determine the effectiveness of controls
Experience For Senior Divisional Information Security Compliance Analyst Resume
- Document, maintain, and obtain ongoing support for all aspects of the information security program
- Develop and iterate our vendor on-boarding process
- Assist with remediation and tracking of IT audit activities
- Perform initial triage and response to phishing emails
- Coordinate according to the project plans ahead of time to secure resources internal and external to the Information Security Compliance team
Experience For Information Security / Compliance Analyst Resume
- Knowledgeable in secure software design and SDLC
- Value-ad is ability to work with a security service provider to understand, review and coordinate information security deliverables
- Knowledge of at least two security controls frameworks (NIST, ISO, CObIT, CSF, CSA, etc.)
- Professional demeanor and ability to work effectively with all levels of management with excellent verbal and written communication, organizational, and interpersonal skills
- Create and maintain project plans, schedules, and metrics and progress reports/presentations
- Relate security principles and processes to business and organizational value
Experience For Junior Information Security Compliance Analyst Resume
- Help our customers understand ServiceNow’s security and compliance control environment
- Lead or assist with successful completion of risk assessment activities
- Research and draft information technology (IT) security policy manuals for assigned business segment in accordance to operations’ needs
- Provides updates to audit finding documentation, remediation status, providing feedback on management responses to findings to track progress for status reporting updates to the security risk team for reporting purposes
- Works with information security leadership team to support strategies and plans to enforce security requirements, identify risks, security exposures, misuse of information assets and noncompliance
- Plays an advisory role in projects to assess security requirements and compliance controls to ensure they are implemented as planned
Experience For Information Security & Compliance Analyst Resume
- Collaborates on critical IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle
- Supports the development of security processes and procedures, and supports service-level agreements (SLAs) to ensure that security controls are managed and maintained
- Lead the effort of building the security compliance program using the HITRUST Common Security Framework as the foundation while ensuring that HIPAA Security requirements, PCI requirements, and other audit requirements are met
- Implement and maintain IT security controls, including IT security policy changes required by technical, business, or compliance changes; review and develop policies, procedures, and standards
- Participate in the development of the Information Security Awareness Program, including reviews and updates to New Employee Orientation
- Decision Making. Integrates logic, intuition and sound judgment to analyze
- Support locally the integration of key Equifax security programs including
- Facilitate annual security compliance reviews and audits
- Help Finance department leadership maintain PCI compliance documentation
Experience For Information Security Compliance Analyst Resume
- Assist in the assessment and review of new and existing technology infrastructure to ensure adequate levels of control are in place to address identified risks and develop risk mitigation techniques and processes when necessary
- Design and execute compliance tests for IT systems and coordinates required remediation and corrective action plans
- Conduct risk assessments on business and operational processes, procedures, and policies; interpret audit results and make conclusions on the adequacy and reliability of controls; prepare and present reports, as necessary
- Inclusion. Values all people for their unique talents, and takes an active role in
- Consulting on various compliance topics (e.g., security architecture, POS solutions, secure development lifecycle, cloud services, physical and environmental security issues) as needed
- Assist in internal cybersecurity initiatives by providing guidance and validation of controls implementation
Experience For Senior Information Security & Compliance Analyst Resume
- Assist with M&A integration activities related to relevant frameworks including SOX/SOC/ISO27001/PCI as needed
- Develop, communicate, and implement information security programs that address people, process and technology risks
- Develop and manage University-wide risk management, assessment, and remediation programs that meets University requirements and federal and state regulations
- Coordinate the University’s security compliance management and response initiatives
- Develop and manage information security policies and standards based on industry best practices and compliance requirements
- Develop, implement, and maintain a University-wide information security awareness and education programs that define enterprise-wide risk assessment, classification and remediation requirements and processes while focusing on continuous improvement
- Facilitate internal and third-party information security risk assessments and work closely with functional groups or departments to prioritize and remediate findings
- Drive the implementation of a framework to support Governance, Risk and Compliance (“GRC”) objectives. Realize significant, measurable gains in GRC practice maturity
Experience For Senior Information Security Compliance Analyst Resume
- Act as a risk and compliance thought leader within the University, provide end-to-end expert guidance on how to manage relevant security risks, influence priorities and decisions across the organization
- Communicate strategic vision and agenda to key stakeholders to ensure proper alignment and support, provide insightful advice and skillful execution
- Provide end-to-end expert leadership on how to effectively achieve and sustain compliance with regulatory, industry and contractual obligations, as well as information security policies and practices
- Ensure that contracts provide adequate protection in the areas of legal/regulatory compliance and information security
- Participate in internal / external audits involving information security controls. Assist stakeholders in providing audit responses and remediating security control findings
- Drive continuous improvement in information security risk and compliance based on expert knowledge in domain areas, industry best practices, business objectives and risk tolerances
- Lead initiatives to regularly assess the adequacy and effectiveness of information security controls, security policies, direct remediation activities, compliance as related to process and workflows, and initiate actions to ensure that compliance and security gaps are successfully addressed
- Represent the IT organization in interactions with internal / external auditors, attorneys, regulators and other 3rd parties within the scope of their domain expertise
List of Typical Skills For an Information Security & Compliance Analyst Resume
Skills For Information Security Compliance Analyst Resume
- Strong Employee Relationship skills
- Strong organizational skills to ensure timely completion of compliance projects
- Uses superior analytical skills to assess data, documentation, and employee input to determine related risk and compliance levels
- Clearly and effectively communicate risks, information security and compliance matters to executives, auditors, and end users
- Prior experience in auditing and risk management, as well as contract and vendor negotiations
- Be a key facilitator to ensure IT Security policies are maintained and effectively communicated across the organization
- Prior experience with GRC systems
Skills For Senior Information Security & Compliance Analyst Resume
- Receive and review automatically-generated alert notifications, filtering and prioritizing as needed, then actioning as applicable
- Provide consulting and technical support services to owners, custodians, and users in defining and deploying cost-effective security controls and protections
- Adapt to changing priorities and circumstances, handle concurrent projects, meet deadlines and manage projects within time & budget
- Experience performing security risk and/or vulnerability assessments
- Experience in working with security risk assessment methodologies
- Office offers excellent amenities, such as, café, free parking and spacious work areas
- IT work experience with exposure to Windows systems and networking fundamentals
- Relevant experience in auditing and information security
- Experience in implementing key performance indicators
Skills For Senior Information Security Compliance Analyst Resume
- Demonstrates the ability to anticipate and respond to issues in a timely manner, and escalate when needed
- Demonstrates the ability to create and propose recommendations based on analysis
- Gain solid knowledge of Encore’s security solutions and tools and general knowledge of current industry security technologies and capabilities
- Excellent work ethic, with little need for direct supervision
- Experience with common Information Security compliance frameworks such as ISO27001, NIST
- Experience with industry-standard Risk Assessment methodologies
Skills For Senior Divisional Information Security Compliance Analyst Resume
- Experience in IT infrastructure or security technologies
- Organized and execution/results oriented with excellent planning and multi-tasking abilities
- Demonstrated self-starter qualities of independence, initiative and creativity
- IT audit, IT compliance or other relevant information security experience
- Experience in a business analyst role with an emphasis on quality, process or security improvement
Skills For Information Security / Compliance Analyst Resume
- Experience in IT industry with the implementation of processes & procedures
- Implement and improve procedures and processes to optimize information compliance program effectiveness
- Reports metrics on program effectiveness to management
- Experience with audit, compliance and regulatory regulations (e.g., SSAE16, PCI-DSS, HIPAA, GLBA)
- Audit, compliance or governance experience.
- Experience in an information security / privacy / compliance, thought leadership role
- Experience in the successful development and implementation of enterprise-wide information security programs which reduce risk
Skills For Junior Information Security Compliance Analyst Resume
- Experience with development of General Controls and/or IT Compliance related standards
- Coordinating and analyzing compliance frameworks with regulations and existing policies
- Monitoring and administering information security compliance processes and policies
- Analyzing emerging technology trends with security vendors and subject matter experts
- Designing and/or adapting security policies
- Understanding of information security standards (i.e. ISO2700x) and IT general controls
- Understanding of fundamental components of a security operations center (SOC)
Skills For Information Security & Compliance Analyst Resume
- Ensuring the security and the compliance of TSG processes and controls,
- Implementing our Vendor Risk Assessment framework in the review of security capabilities of external vendors,
- Working with technology and business leaders to continuously improve and maintain our policies across the organization
- Working knowledge of data analysis software and tools. Knowledge of relational databases
- Working with systems or applications teams to understand compliance requirements, with an emphasis on PCI compliance
- Partnering with Internal Audit/external auditors/compliance entities on special projects and audit support
- Accepting and flexible to various time zones for meetings and conference calls with teams worldwide
- Understanding in data privacy and data security regulatory requirements or framework such as HIPAA, GDPR, FDA, ISO, NIST, HITRUST, SOC II, etc.)
- Working knowledge and exposure of IT Governance, Risk Management, and Compliance practices
Skills For Information Security Compliance Analyst Resume
- IT audit facilitation including initial meeting scheduling, documentation request coordination, and issue tracking
- Primarily responsible for planning, coordinating, and executing Information Security Compliance initiatives
- Assist in the creation and tracking of training material and security awareness activities
- Manage a compliance strategy including development and ongoing implementation of Hulu’s security compliance controls
- Works with distributed research community to achieve security compliance in accordance with standards as prescribed by the granting/contracting agency
- Develop and enhance risk management processes and play a lead role in publishing and communicating policies that provide clear direction and guidance
- Conduct other systems audits, tracking and remediating of risks discovered through those audit processes
- Assist risk owners with identification of key risks and mitigating controls as well as action plans to address any gaps in the mitigating measures identified
- Provides support to Information Security Officer responsibilities including IT/ Legal / HR / Global Operations / Marketing / Finance / Corporate Development
Skills For Senior Information Security & Compliance Analyst Resume
- Assist in managing and communicating processes related to Security Policies & Standards
- Conduct quarterly end user information security awareness training and ongoing awareness campaigns
- Proficiency with MS Office applications including Project and Visio
- Technical Knowledge – overall understanding of applied information technology
- Review and modify existing security and compliance documents and develop standards
- Develop and track key performance indicators (KPIs) and metrics for benchmarking and operational success
- Strategic mind-set to ensure a clear focus on the go forward agenda and the ability to apply risk based decisions balancing cost/opportunity and risk
- Increasing responsibilities in IT risk management, information security or compliance related field
Skills For Senior Information Security Compliance Analyst Resume
- Critical strategic thinking capabilities, viewed as a subject matter expert (SME)
- Assists in the coordination, documentation and reporting of information security risk assessments and audits from clients and internal/external auditors
- Inform and educate University students and employees of their responsibility for protecting sensitive assets and resources
- Direct security risk assessments and manage testing of information security controls
- Work closely with attorney’s, regulators and third-parties while representing the University’s security position
- Collaborate with IT, executive management, and business stakeholders towards achieving business and security objectives
- Map customer and regulatory requirements across information security framework to identify overlapping requirements and compliance efficiencies
- Assist with analysis of security control mapping and compliance efficiency improvements
- Follow up security projects working with people from different teams
List of Typical Responsibilities For an Information Security & Compliance Analyst Resume
Responsibilities For Information Security Compliance Analyst Resume
- Working knowledge and understanding of ISO framework
- Responsible for providing guidance and support for business units during applicable audits
- Shadow other team members to learn techniques for interacting with business leaders and customers
- Establish and document security standards, procedures, and controls leveraging Encore’s GRC solution
- Monitor security reports and alerts for anomalies or other suspicious activity using automated tools and manual analysis
- Collect and analyze data for reporting key security and compliance metrics to management
- Perform IT risk and vulnerability assessments and support on-going risk management efforts
Responsibilities For Senior Information Security & Compliance Analyst Resume
- Complete all tasks and deliverables on time while ensuring quality
- Produce regular reporting for security related topics
- Implement supplier management tools and processes in coordination with the Procurement, Accounting and Legal departments to optimize the vendor review process
- Partner with IT and program management teams to define and implement a secure SDLC framework
- Experience in implementing a risk management program which defines risk assessment and remediation requirements, in conducting information security risk assessments which map to ISO/IEC 27000, NIST, BITs, etc., and in defining and implementing SDLC security requirements
- Experience in developing an information security policy, writing effective information security policies and standards, and in protecting PHI in compliance with HIPAA, HITECH, FISMA, etc
- Advanced knowledge of Spotfire or another analysis tool as part of the single, centrally-managed platform for process analytics
- Responding to client or other third party requests to provide assurances regarding the confidentiality, integrity, and availability of Bain’s processes and systems for handling client data
Responsibilities For Senior Information Security Compliance Analyst Resume
- Work within TSG and other departments within Bain to ensure secure, consistent delivery of security capabilities
- Perform audit work as assigned, leveraging common audit methodologies to evaluate risk, determine control objectives and verify the extent to which control techniques meet objectives
- Develop effective and efficient tests of key controls. Execute and document audit tests, and document and communicate analysis of the effectiveness of controls
- Work with outside vendors and internal customers to assess and communicate any identified risks and to work with business owners and vendors to adequately security Bain’s resources
- Identify, investigate and develop process improvement solutions for unique and/or complex situations
Responsibilities For Senior Divisional Information Security Compliance Analyst Resume
- Involvement in planning activities of information technology, operational and compliance audits across the enterprise and assist with the coordination between IT and internal/external audit participants by acting as the liaison
- Coordinate with independent auditors in executing audit procedures for the organization, close-out and finalize audits / projects, identification and assessment of issues, review of supporting documentation, and the coordination of remediation activities
- Creates and interprets information security policies and assists with their implementation and enforcement
- Promotes information security awareness and monitors compliance with enterprise information security policies
- Work with various business partners to facilitate the completion of risk assessments and targeted compliance risk assessments
- Assist in the assessment and review of new vendors and/or new and existing technology to ensure adequate levels of control are in place to maintain compliance with security requirements
- Monitor status of user security access reviews as well as handle the coordination of POS terminal inventory reviews across all locations
- Monitor status and compliance with Payment Card Industry (PCI) standards
Responsibilities For Information Security / Compliance Analyst Resume
- Security and IT Risk experience with regulatory, internal audit and/or compliance testing, including the development of remediation activities or steps
- Experience with the audit process involving relevant regulatory requirements specific to General Data Privacy Regulation (GDPR), Sarbanes-Oxley (SOX), Payment Card Industry/Data Security Standard (PCI-DSS) and Privacy Shield
- Experience with information security tools and utilities
- Flexibility to travel as required up to 25% overnight travel
- Review existing security compliance controls for customer, contractual, regulatory, and policy requirements and perform the necessary gap analysis. Consider future industry certifications such as FedRAMP, HIPAA and ITAR
- Support audit/compliance programs, working closely with internal teams to ensure audit readiness, design control language and communicate control strengths and weaknesses
- Contribute by enhancing and maturing the risk framework
Responsibilities For Junior Information Security Compliance Analyst Resume
- Describe, evaluate and support testing of manual and automated controls throughout the environment, in liaison with internal and external auditors
- Contribute in enhancing our GRC tool to address risk management and compliance business needs
- Develop/Enhance dashboard for management level risk reporting
- Collaborate with risk detection and proactive audit planning, execution and follow-up of potential findings
- Performs audit preparation and manage identified remediation required for the compliance standards in scope of SAP Ariba organizational requirements
Responsibilities For Information Security & Compliance Analyst Resume
- Work with business owners on remediation plans that address identified gaps based on severity of risk and non-compliance
- Identify, document and elevate visibility to information risk that creates potential for exposure to the company
- Supports the continued development and maintenance of the SAP Ariba Security and Privacy and Compliance Framework
- Apply COBIT5, COSO, ITIL, ISF, OWASP, ISO 27K or NIST frameworks to all documentation and remediation efforts
- Lead or assist the successful completion of risk assessment activities
- Direct and recent work experience with at least two of the following compliance program: ISO 27001, ISO 9001, PCI, SSAE16, SOC2, HIPPA, 21 CFR Part 11, 21 CFR Part 820, Annex 11, FedRAMP, DoDI 8500.2, and GDPR
- Lead security and compliance projects
Responsibilities For Information Security Compliance Analyst Resume
- Translate complex regulations into clear, easily understood regulatory requirements and desired outcomes
- Establish a compliance plan and program, to identify relevant external/internal regulations, standards, guidelines, to develop and implement the proper compliance procedures and activities to ensure operational resiliency
- Identify organization compliance requirements
- Collaborate with multiple departments and cross functional teams
- Information Security Officer backup for holidays, potential absences
- Acts as a point of contact for security concerns and/or questions. Assists in the resolution of employee relations and conducts investigations in regard to policy violations
- Collaborate with Security Awareness activities, presenting the security program to employees and new hires
Responsibilities For Senior Information Security & Compliance Analyst Resume
- Provides counsel and support to employees about Security Policies implementation
- Supports the organization by managing applicable applications, tools and processes related to the Security Programs Team (e.g. Archer Module(s), Confluence, SharePoint)
- Assist in managing and responding to security exception process
- Research, collect, compile and analyze a wide variety of complex data and information requests to prepare team reports and/or presentations
- Manage multiple assignments and deadlines of team members and maintain schedule of deliverables for internal/external presentations and work products
- Assist with the design and deployment of new security solutions and related processes
- Monitor IT compliance with applicable industry and government rules and regulations (i.e. PCI DSS, SOX, NIST Cyber Security Framework)
- Assist and coordinate business impact analysis with key stakeholders
- Coordinate and support information security tasks across North American entities
Responsibilities For Senior Information Security Compliance Analyst Resume
- Work directly with Porsche AG counterparts and IT management to receive proper approvals and ensure compliance
- Manage and oversee key information security tasks
- Track, monitor and report on vendor compliance with information security standards
- Complete security relevant project documentation
- Responsible for the proper usage, awareness, and compliance of Porsche policies and procedures
- Perform risk assessments against a variety of organizational elements, determining likelihood and impact of occurrence, then proposing appropriate minimizing measures
- Regularly review and update ISMS documentation, facilitating participation from owners and consulted individuals, then ensure that documents are properly registered in the Document Control system
- Intensely manage Information Security-related projects to completion, exerting influence and inspiring enthusiastic participation
- Support sales process by fulfilling Information Security / Data Protection questions/questionnaires, RFPs, reviews and consultation meetings as needed