Templar Shield
Governance Risk & Compliance Consultant
Templar Shield, Dallas, Texas, United States, 75215
Dallas, United States
| Posted on 07/08/2024Responsibilities
Manage technical and non-technical FCC Compliance and PCI compliance security controls, ensuring their fulfilment.Determine and assess IT risks and vulnerabilities and develop strategies to mitigate them.Oversight of non-conformity findings and corrections performed by technical tasks.Collaborate with diverse teams to successfully implement risk management initiatives.Partner with teams across the organization to develop, monitor and evaluate the effectiveness of risk management controls and procedures.Conduct regular audits to identify areas for improvement and ensure compliance with regulatory requirements.Auditing security controls related to Web application, API security, IAM, PAM, PII, CPNI, Authentication, Access Control, MFA etc. as per FCC and PCI compliance requirements and drive remediation efforts.Record-keeping, documentation, evidence gathering for audit readiness.Complete data collection and aggregation that requires all data to be tagged with the proper legal authorities for compliance.Develop, implement, and drive the execution and continuous improvement of cybersecurity risk management framework, processes, procedures, and activities.Ensure the risk management process continuously aligns with industry best practices and industry standards.Perform security and compliance risk assessments to allow for effective identification and management of cybersecurity risks.Work with senior leadership to establish and improve integration of risk management process into strategic planning processes.Define risk metrics and thresholds with risk owners to identify and drive additional action on cybersecurity risk.Cultivate strong working relationships with risk owners to ensure proper risk management program buy-in and accountability.Assist with the development of System Security Plans, Continuous Monitoring, Plan of Action and Milestones, Security Controls Assessment, Risk Exposure analysis.Requirements
Experience in GRC functions related to IT risk management and compliance preferably with cloud SaaS providers.5+ years of experience in FCC Compliance, privacy, PII, PCI, auditing web applications.Knowledge of SOC 2, NIST 800-171, and NIST 800-53, with strong experience in compliance.Knowledge of industry regulations and standards, such as HIPAA and GDPR.Exceptional analytical and problem-solving skills.Proficient in fostering positive relationships and conveying information effectively.Bachelor’s degree in information technology or a related field.
#J-18808-Ljbffr
| Posted on 07/08/2024Responsibilities
Manage technical and non-technical FCC Compliance and PCI compliance security controls, ensuring their fulfilment.Determine and assess IT risks and vulnerabilities and develop strategies to mitigate them.Oversight of non-conformity findings and corrections performed by technical tasks.Collaborate with diverse teams to successfully implement risk management initiatives.Partner with teams across the organization to develop, monitor and evaluate the effectiveness of risk management controls and procedures.Conduct regular audits to identify areas for improvement and ensure compliance with regulatory requirements.Auditing security controls related to Web application, API security, IAM, PAM, PII, CPNI, Authentication, Access Control, MFA etc. as per FCC and PCI compliance requirements and drive remediation efforts.Record-keeping, documentation, evidence gathering for audit readiness.Complete data collection and aggregation that requires all data to be tagged with the proper legal authorities for compliance.Develop, implement, and drive the execution and continuous improvement of cybersecurity risk management framework, processes, procedures, and activities.Ensure the risk management process continuously aligns with industry best practices and industry standards.Perform security and compliance risk assessments to allow for effective identification and management of cybersecurity risks.Work with senior leadership to establish and improve integration of risk management process into strategic planning processes.Define risk metrics and thresholds with risk owners to identify and drive additional action on cybersecurity risk.Cultivate strong working relationships with risk owners to ensure proper risk management program buy-in and accountability.Assist with the development of System Security Plans, Continuous Monitoring, Plan of Action and Milestones, Security Controls Assessment, Risk Exposure analysis.Requirements
Experience in GRC functions related to IT risk management and compliance preferably with cloud SaaS providers.5+ years of experience in FCC Compliance, privacy, PII, PCI, auditing web applications.Knowledge of SOC 2, NIST 800-171, and NIST 800-53, with strong experience in compliance.Knowledge of industry regulations and standards, such as HIPAA and GDPR.Exceptional analytical and problem-solving skills.Proficient in fostering positive relationships and conveying information effectively.Bachelor’s degree in information technology or a related field.
#J-18808-Ljbffr