Senior Internal Audit/Compliance Analyst

Summary

Conexess Group is aiding a local client in their search for an Internal Audit/Compliance Analyst. Ideal candidates will have proven experience providing compliance, analytical and consulting support. This person will be working directly with the Information Security team and leading new Privacy programs specialize in departmental governance, risk and compliance projects. Our client is standing up a new group in the IT Security team and needs a strong candidate with a regulatory, privacy and analytical mindset (this is NOT a technical role). New CCPA/ Privacy laws are being regulated and this candidate will play a key role in gathering documentation and requirements ensuring all processes are carefully documented. In addition, the candidate will be driving the Payment Card Industry (PCI) assessment efforts for the year which will entail gathering and organizing hundreds of artifacts and supporting documentation. 

Required Skills

·       Non-technical role

·       Looking for a Business Analyst (BA) / Internal Auditor/ Technical Writer/Documentation Specialist/type person that (preferably) has experience or has done work in one of the following areas: Governance, Risk or Audit Compliance

·       PCI assessment experience would be a plus

·       GDRP would be a huge plus but is not needed

·       Adobe PDF; Smartsheet etc. nothing too technical 

·       Full Microsoft Suite: Word, Outlook, PowerPoint, Visio, Excel, SharePoint, Teams

·       Ensure professionalism and confidentially of the Information Security Department

• This person will help Drive PCI regulations for the rest of the year, gather artifacts, documentation, etc
• Strong project management and organizational skills needed to meet deadlines

·       Ability to map out workflows with cross functional teams from scratch

·       Willingness to collaborate ideas and fulfill project requests from legal, directors, managers, analysts and specialists  

·       Get buy-in from shareholders to promote CCPA awareness and visibility of new privacy program to employees handling customer personal identifiable data (PII)

·       Stay abreast of ongoing data protection laws and guidelines for company’s privacy policy

·       Ability to review, interpret, or revise Information Security policies and procedures as necessary

·       Provide reports for senior leadership on the progress of privacy efforts as needed

·       Identify and monitor risks that impact Information Security internal controls  

·       60% of the role would be documentation control (going through item checklist)

·       creating documentation from scratch

·       coordinate tracking and uploading documentation via smartsheet, excel & SharePoint

·       double-checking PCI item requested for completeness and accuracy

PCI Requirements:

·       Understanding of privacy or PCI is a plus

·       Effective written and oral communication skills and documentation skills are the most important****

·       Self-starter who can work independently and with teams in an enterprise environment

·       The reason communication is key is because this person will play a big role in trying to get items/ answers/ data out of people.  You need to have the right approach/ communicate the correct way to do that. 

#LI-JB1