Whatsapp
Posted : Saturday, January 13, 2024 03:46 AM
The IT Compliance Manager is responsible for ensuring that our organization adheres to regulatory requirements, industry standards, and internal policies related to information technology and data security.
This role involves developing, implementing, and monitoring compliance programs and controls to mitigate risks and ensure the integrity and security of our IT systems and data.
This person should have a Bachelor’s degree in Computer Science or Information Technology and/or 4+ years experience in simulation technologies and should have a passion for product development.
This role will communicate daily with the CTO and EVP, Products and will work on a team of 6-8 fellow developers.
Technology Capabilities and Experience This person will have experience and expertise with the following: Develop and maintain IT compliance policies, procedures, and standards based on applicable regulatory requirements(NIST 800-171/CMMC), industry best practices, and organizational needs.
Conduct regular risk assessments and audits to identify compliance gaps, vulnerabilities, and areas for improvement in our IT infrastructure, systems, and processes.
Collaborate with internal stakeholders, including IT teams, legal, security, and risk management, to ensure alignment of IT compliance initiatives with business objectives and priorities.
Implement and audit IT compliance controls, processes, and mechanisms to monitor and enforce compliance with relevant regulations, standards, and policies.
Provide guidance and support to IT teams on compliance requirements, controls, and best practices, including training and awareness programs to promote a culture of compliance.
As required, coordinate external audits and assessments conducted by regulatory authorities, auditors, or third-party vendors, and ensure timely and accurate responses to audit findings and recommendations.
Monitor changes in regulatory requirements, industry standards, and emerging threats or vulnerabilities, and assess their impact on our IT compliance posture, recommending and implementing necessary adjustments.
Maintain documentation and records of IT compliance activities, assessments, findings, and remediation efforts to demonstrate compliance and support regulatory reporting requirements.
Key Skill Sets: Creativity and flexible thinking in terms of finding and developing compliant solutions that serve the needs of the business and meet compliance requirements Strong understanding of regulatory requirements and compliance frameworks relevant to information technology and data security, specifically the 110 controls of NIST 800-171 Knowledge of IT governance principles, risk management methodologies, and control frameworks Familiarity with IT security controls and technologies, including network security, access controls, encryption, identity and access management (IAM), and security information and event management (SIEM) systems.
Experience with implementing cybersecurity solutions in small-midsize business, designing and operating effective, measurable, pragmatic and auditable IT controls Experience with conducting risk assessments, audits, and compliance reviews, and proficiency in identifying and mitigating IT compliance risks and vulnerabilities.
Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and communicate complex compliance concepts to non-technical stakeholders.
Strong analytical and problem-solving skills, with the ability to analyze complex IT systems and processes, identify compliance issues, and recommend practical solutions.
Attention to detail and the ability to maintain accuracy and integrity in compliance documentation, reporting, and record-keeping.
Project management skills, including the ability to prioritize tasks, manage timelines and resources, and drive initiatives to completion in a fast-paced environment.
Requirements: Excellent presentation, research, and writing capabilities required.
Candidates must be able to independently produce complete, polished work products.
5+ years of experience in cybersecurity and compliance Certifications, such as, but not limited to CISA, CISM required.
Up to date knowledge of Government regulations and standards (e.
g.
FedRAMP, NIST 800-218, NIS2, NIST 800-53, NIST 800-171, NIST CSF, CMMC) Expert knowledge in Cybersecurity / IT compliance assessment, System Security Plans (SSP), and Plans of Actions and Milestones (POAM) required.
Ability to multitask and design and implement security controls and work with the larger business team to assess their effectiveness and fit for the business Ability to influence and communicate across the business required Bachelor degree required; specific qualifications on IT/Cybersecurity and IT Audit preferred Local to our Ashburn, VA office a plus US Citizenship required
This role involves developing, implementing, and monitoring compliance programs and controls to mitigate risks and ensure the integrity and security of our IT systems and data.
This person should have a Bachelor’s degree in Computer Science or Information Technology and/or 4+ years experience in simulation technologies and should have a passion for product development.
This role will communicate daily with the CTO and EVP, Products and will work on a team of 6-8 fellow developers.
Technology Capabilities and Experience This person will have experience and expertise with the following: Develop and maintain IT compliance policies, procedures, and standards based on applicable regulatory requirements(NIST 800-171/CMMC), industry best practices, and organizational needs.
Conduct regular risk assessments and audits to identify compliance gaps, vulnerabilities, and areas for improvement in our IT infrastructure, systems, and processes.
Collaborate with internal stakeholders, including IT teams, legal, security, and risk management, to ensure alignment of IT compliance initiatives with business objectives and priorities.
Implement and audit IT compliance controls, processes, and mechanisms to monitor and enforce compliance with relevant regulations, standards, and policies.
Provide guidance and support to IT teams on compliance requirements, controls, and best practices, including training and awareness programs to promote a culture of compliance.
As required, coordinate external audits and assessments conducted by regulatory authorities, auditors, or third-party vendors, and ensure timely and accurate responses to audit findings and recommendations.
Monitor changes in regulatory requirements, industry standards, and emerging threats or vulnerabilities, and assess their impact on our IT compliance posture, recommending and implementing necessary adjustments.
Maintain documentation and records of IT compliance activities, assessments, findings, and remediation efforts to demonstrate compliance and support regulatory reporting requirements.
Key Skill Sets: Creativity and flexible thinking in terms of finding and developing compliant solutions that serve the needs of the business and meet compliance requirements Strong understanding of regulatory requirements and compliance frameworks relevant to information technology and data security, specifically the 110 controls of NIST 800-171 Knowledge of IT governance principles, risk management methodologies, and control frameworks Familiarity with IT security controls and technologies, including network security, access controls, encryption, identity and access management (IAM), and security information and event management (SIEM) systems.
Experience with implementing cybersecurity solutions in small-midsize business, designing and operating effective, measurable, pragmatic and auditable IT controls Experience with conducting risk assessments, audits, and compliance reviews, and proficiency in identifying and mitigating IT compliance risks and vulnerabilities.
Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and communicate complex compliance concepts to non-technical stakeholders.
Strong analytical and problem-solving skills, with the ability to analyze complex IT systems and processes, identify compliance issues, and recommend practical solutions.
Attention to detail and the ability to maintain accuracy and integrity in compliance documentation, reporting, and record-keeping.
Project management skills, including the ability to prioritize tasks, manage timelines and resources, and drive initiatives to completion in a fast-paced environment.
Requirements: Excellent presentation, research, and writing capabilities required.
Candidates must be able to independently produce complete, polished work products.
5+ years of experience in cybersecurity and compliance Certifications, such as, but not limited to CISA, CISM required.
Up to date knowledge of Government regulations and standards (e.
g.
FedRAMP, NIST 800-218, NIS2, NIST 800-53, NIST 800-171, NIST CSF, CMMC) Expert knowledge in Cybersecurity / IT compliance assessment, System Security Plans (SSP), and Plans of Actions and Milestones (POAM) required.
Ability to multitask and design and implement security controls and work with the larger business team to assess their effectiveness and fit for the business Ability to influence and communicate across the business required Bachelor degree required; specific qualifications on IT/Cybersecurity and IT Audit preferred Local to our Ashburn, VA office a plus US Citizenship required
• Phone : NA
• Location : Ashburn, VA
• Post ID: 9131143195
