Sr Analyst, IT Compliance

Title: Sr. IT Compliance Analyst  (PCI & SOX) 
Location: Miami, FL (Local) 3-days onsite, Hybrid
Duration: Direct Hire
Salary: $100k- $110k 
Work Requirements: US Citizen, GC Holders or Authorized to Work in the U.S. 

Sr Analyst, IT Compliance

The Sr Analyst, IT Compliance is responsible for ensuring that IT practices adhere to relevant laws, regulations, and industry standards, such as Sarbanes-Oxley (SOX) and Payment Card Industry (PCI) compliance. The role facilitates compliance of applications and infrastructure. The Sr. Analyst conducts assessments and implements controls to mitigate risks related to regulatory requirements. The role will maintain absolute confidentiality of sensitive files, data and materials accessed, discussed, or observed while adhering to compliance policies and procedures,

Essential Functions:

• Regulatory Sr Analyst, IT Compliance is responsible for ensuring that IT practices adhere to relevant laws, regulations, and industry standards, such as Sarbanes-Oxley (SOX) and Payment Card Industry (PCI) compliance. The role facilitates compliance of applications and infrastructure. The Sr. Analyst conducts assessments and implements controls to mitigate risks related to regulatory requirements. The role will maintain absolute confidentiality of sensitive files, data and materials accessed, discussed, or observed while adhering to compliance policies and procedures
• Compliance Monitoring and Reporting: Monitor ongoing compliance activities, track regulatory changes, and prepare reports for management and regulatory agencies. Document compliance findings, issues, and remediation efforts. Conduct impact assessments to determine the impact of regulatory changes and report findings to leadership. Assess compliance-related risks and develop risk mitigation strategies. Stay abreast of regulatory changes and industry developments to ensure compliance programs remain current and effective
• Internal Audits and Reviews: Conduct internal assessments and reviews to evaluate the effectiveness of controls and identify areas for improvement. Review access controls, data protection measures, and security configurations. Respond to Internal Audit and other stakeholder's findings and inquiries, preparing official documentation where appropriate
• Vendor and Third-Party Compliance Management: Assess the compliance of vendors and third-party service providers to ensure they meet all security and regulatory requirements
• Policy and Procedure Development: Review and provide input to update IT policies, procedures, and standards to address compliance requirements. Help create documents such as acceptable use policies and data retention policies plans. Publish and communicate policies and procedures to stakeholders
• Training and Awareness: Maintain a high degree of familiarity with compliance policies, standards, and procedures. Provide training and awareness programs to educate stakeholders about compliance requirements and best practices.
• Identify opportunities for automation in current compliance activities and leverage technologies to modernize and streamline team workflows

Qualifications:

• Education: Bachelor's degree in computer science, IT compliance, audit, or related area is required. An advanced degree is highly desirable particularly and excellent verbal and written communication skills. Master's degree a plus.
• Certifications: Desired to have one of or more of the following certificates: CISM, CISSP. Desired to be trained in Project management, product management or Agile approach
• Work Experience: 5 years years of experience in Information Technology and Information Security/Compliance with the focus on executing compliance framework and programs such as PCI-DSS, SOX, HIPAA, etc. 5 years of Information/Cybersecurity and Compliance experience. 5 years of technology project management with experience building process, controls, operating procedures, and guidelines.
• Knowledge in various compliance regulations such as PCI-DSS, SOX, HIPAA, GDPR, NIST, etc. Knowledge of information technologies components as networking, security, different OSs, DB environments.
• CISSP, CCEP, or CISA equivalent is desirable certifications.
•  Previous experience performing security and compliance assessments.

Knowledge, Skills & Abilities:

•  Strong analytical and organizational skills.
• Ability to think critically. Knowledge in process improvement practices.
• Excellent communication and presentation skills (both written and verbal).
• Ability to communicate effectively at all levels of the organization.
• Ability to manage and build large/complex data sets.
• Ability to work independently (including remotely) and multi-task, managing multiple assignments and deadlines. Skill to meet deadlines while ensuring quality results.
• Ability to drive and lead conversations, coordinating work among different parties.
• Demonstrated ability to apply IT-related knowledge and experience in solving compliance issues.
• Strong ability to troubleshoot problems. Attention to detail is a must.
• Proficient in documentation and creating operating, assessment, and audit procedures.
• Ability to create high-quality technical documents.
• Experience with complex risk-based approach to internal and external compliance efforts.
• Proficient with Microsoft Office Suite.
• Able to achieve desired goals and objectives while maintaining the respect and support of the organization.

About INSPYR Solutions
Technology is our focus and quality is our commitment. As a national expert in delivering flexible technology and talent solutions, we strategically align industry and technical expertise with our clients' business objectives and cultural needs. Our solutions are tailored to each client and include a wide variety of professional services, project, and talent solutions. By always striving for excellence and focusing on the human aspect of our business, we work seamlessly with our talent and clients to match the right solutions to the right opportunities. Learn more about us at inspyrsolutions.com.
 
INSPYR Solutions provides Equal Employment Opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, INSPYR Solutions complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities