What are the responsibilities and job description for the IT Compliance Analyst (Tarrytown, NY) position at ContractRecruiter.com?
Job Title: IT Compliance Analyst Reports To: VP of IT and CISO
Department: Information Technology FLSA Class: Exempt
Prestige Consumer Healthcare is a company that focuses on product innovation and quality in the over-the-counter healthcare and women’s health categories to better improve the lives of our customers and their world. For generations, our trusted brands have helped consumers care for themselves and their loved ones. We are one of the largest independent providers of over-the-counter products in North America, and we are constantly improving and creating products that match the ever-changing lifestyles and needs of people and families everywhere.
JOB SUMMARY:
SAP is a very flexible, fully integrated and complex ERP system that will allow PCH to continue to sustain growth for many years.
PCH IT will need to address the following areas:
LANGUAGE SKILLS:
Ability to read, analyze, and interpret general business periodicals, professional journals, technical procedures, or governmental regulations. Ability to write reports, business correspondence, and procedure manuals. Ability to effectively present information and respond to questions from groups of managers, clients, customers, and the general public.
MATHEMATICAL SKILLS:
Ability to calculate figures and amounts such as discounts, interest, commissions, proportions, percentages, area, circumference, and volume. Ability to apply concepts of basic algebra and geometry.
REASONING ABILITY:
Ability to apply common sense understanding to carry out instructions furnished in written, oral, or diagram form. Ability to deal with problems involving several concrete variables in standardized situations.
PHYSICAL DEMANDS:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to sit. The employee frequently is required to talk or hear. The employee is occasionally required to stand; walk; use hands to finger, handle, or feel; reach with hands and arms; and stoop, kneel, crouch, or crawl. The employee must occasionally lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, and ability to adjust focus.
WORK ENVIRONMENT:
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
The noise level in the work environment is usually moderate.
Salary Range: $90k - $100k
No Sponsorship: Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.
#HybridWork: We follow a Hybrid work schedule. All applicants must be able to work in our Tarrytown office Tues/Wed/Thurs (remote on Mon/Fri).
Work Hours: 40 hours per week.
Department: Information Technology FLSA Class: Exempt
Prestige Consumer Healthcare is a company that focuses on product innovation and quality in the over-the-counter healthcare and women’s health categories to better improve the lives of our customers and their world. For generations, our trusted brands have helped consumers care for themselves and their loved ones. We are one of the largest independent providers of over-the-counter products in North America, and we are constantly improving and creating products that match the ever-changing lifestyles and needs of people and families everywhere.
JOB SUMMARY:
SAP is a very flexible, fully integrated and complex ERP system that will allow PCH to continue to sustain growth for many years.
PCH IT will need to address the following areas:
- Risk Mitigation: Mitigate risk by maintaining information security documentation and assisting in the development of security policies and procedures. We will also require additional investment in its governing, tools and processes.
- Growth of Information Security Policy – support Prestige to elevate operational processes and formalize across the organization
- Optimization: Continually look for improvements/new opportunities to improve efficiencies & benefits in the business
- Training: Manage the Cyber Security training programs and fake Phish attacks performed at Prestige
- Inter-module Dependencies: Security Compliance Officer will work with Network teams and IT management to enhance security controls and documentation
- Work with internal and external auditors to manage the Sarbanes Oxyley Compliance and Segregation of Duties
- Keep all global IT SOP’s current and reviewed on an annual basis
- Create and update all IT policies and procedures related to NIST CSF compliance
- Manage the Cyber security training program and fake phishing attacks to company employees currently in Proofpoint
- Train staff on new security policies and procedures
- Manage vendor security compliance audits and support recommendations
- Responsible for leading efforts that include collecting and organizing written responses and documentation, leading calls and meetings to gather information from vendors, and ensuring that all follow-up communications and remediation items are completed on time. You will be responsible for scheduling and coordinating vulnerability assessments, penetration tests
- Organizing and conducting meetings of the firm’s cloud security review team, coordinating the assessment of vendors, and leveraging team members’ expertise in the vendor review process
- Creating and presenting regular reports to IT senior technology management
- Make recommendations and advise on organization-wide processes
- Maintain Global IT SOP’s and procedures
- A bachelor’s degree, a Diploma of higher education
- Demonstrate excellent communication and interpersonal skills
- Background in working with auditors for Sarbanes Oxyley compliance
- Familiarity with NIST CSF compliance
- Knowledge of Cloud compliance and dealing with 3rd party vendors for those Cloud compliance security requirements
- Self-starter in developing original documents, SOPS’s, Global Policies and procedures
- A minimum of 2-3 years of experience focused on information security is required
- A minimum of two (2) years of experience applying project management concepts is required
- Background in developing Global SOP’s.
- Background in Cyber Security training and controls.
- Familiarity with NIST CSF compliance
- Excellent written and verbal communication skills
- Must have business process knowledge
- Must be a team player and must contribute at the team level
- Requiring at least 5 years with documentation around IT policies and procedures
- Must have Enterprise level experience with solutions and driving continuous improvement throughout the organization
- Must have professional experience
LANGUAGE SKILLS:
Ability to read, analyze, and interpret general business periodicals, professional journals, technical procedures, or governmental regulations. Ability to write reports, business correspondence, and procedure manuals. Ability to effectively present information and respond to questions from groups of managers, clients, customers, and the general public.
MATHEMATICAL SKILLS:
Ability to calculate figures and amounts such as discounts, interest, commissions, proportions, percentages, area, circumference, and volume. Ability to apply concepts of basic algebra and geometry.
REASONING ABILITY:
Ability to apply common sense understanding to carry out instructions furnished in written, oral, or diagram form. Ability to deal with problems involving several concrete variables in standardized situations.
PHYSICAL DEMANDS:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to sit. The employee frequently is required to talk or hear. The employee is occasionally required to stand; walk; use hands to finger, handle, or feel; reach with hands and arms; and stoop, kneel, crouch, or crawl. The employee must occasionally lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, and ability to adjust focus.
WORK ENVIRONMENT:
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
The noise level in the work environment is usually moderate.
Salary Range: $90k - $100k
No Sponsorship: Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.
#HybridWork: We follow a Hybrid work schedule. All applicants must be able to work in our Tarrytown office Tues/Wed/Thurs (remote on Mon/Fri).
Work Hours: 40 hours per week.
Salary : $90,000 - $100,000
