Remote Compliance Analyst (IT/Cybersecurity) (The Compliance Navigator)

Description:

• The Compliance Analyst (IT/Cybersecurity) at our client will be responsible for conducting compliance audits and assessments of the organization's IT and cybersecurity environments to ensure adherence to internal policies, industry standards, and regulatory frameworks such as GDPR, HIPAA, PCI-DSS, and ISO 27001.
• The role involves performing risk assessments, identifying compliance gaps, and developing risk mitigation strategies to reduce the organization's overall risk exposure.
• The Compliance Analyst will collaborate with IT, security, and legal teams to develop and enforce compliance policies, procedures, and guidelines, ensuring alignment with the latest regulatory requirements and industry best practices.
• Responsibilities also include maintaining accurate documentation of compliance activities, preparing detailed reports for management and regulatory authorities, and developing and delivering training programs to educate employees on compliance requirements and cybersecurity best practices.
• Additionally, the role involves assessing and managing the compliance of third-party vendors and partners, serving as a liaison between legal, IT, and security teams, and ensuring compliance requirements are integrated into technical systems and business processes.

Requirements:

• Compliance Expertise: Strong understanding of IT and cybersecurity compliance frameworks and regulations such as GDPR, HIPAA, PCI-DSS, ISO 27001, and NIST. Ability to guide teams through regulatory landscapes.
• Risk Management Skills: Experience in conducting risk assessments, identifying compliance gaps, and developing risk mitigation strategies.
• Audit Experience: Hands-on experience in conducting internal audits, preparing audit reports, and presenting findings to stakeholders.
• Communication and Training: Exceptional communication skills to explain complex compliance requirements to technical and non-technical stakeholders.
• Regulatory Knowledge: Familiarity with data protection laws, security standards, and IT regulations.
• Analytical and Problem-Solving Skills: Strong analytical and problem-solving abilities to develop effective compliance solutions.
• Humor: A great sense of humor to foster a productive and enjoyable work environment.

Educational Requirements:

• Bachelor’s or Master’s degree in Cybersecurity, Information Technology, Risk Management, or related field. Relevant certifications such as CISA, CISSP, CIPP are highly desirable.

Experience Requirements:

• 3+ years of experience in IT or cybersecurity compliance, including hands-on experience in conducting compliance audits and managing regulatory adherence.
• Experience with industry-specific regulatory frameworks (GDPR, HIPAA, PCI-DSS) and assessing third-party vendors for compliance is a plus.

Benefits:

• Comprehensive health and wellness benefits including medical, dental, and vision insurance plans.
• Competitive paid time off including vacation, sick leave, and 20 paid holidays per year.
• Flexible work schedules and telecommuting options for work-life balance.
• Opportunities for professional development, training, and career advancement.
• Access to wellness programs, gym memberships, health screenings, and mental health resources.
• Life and disability insurance coverage.
• Employee Assistance Program (EAP) for counseling and support services.
• Tuition reimbursement for continuing education.
• Community engagement and volunteer opportunities.
• Recognition programs to celebrate achievements and milestones.