SOX Compliance Analyst
COMPETENCIES:
- Intimate understanding of Sarbanes Oxley (SOX) Compliance requirements and IT General Controls
- Demonstrated experience in implementing and assessing SOX related standards, guidelines, and other regulatory mandates
- Experience in implementing and utilizing compliance framework such as COSO, COBIT, NIST, and ISO 27001 etc
- Thorough understanding of PCI-DSS, GDPR, and the California Consumer Privacy Act (CCPA)
- Familiarity with a broad range of IT and Information Security products and technologies such as identity and access management, vulnerability management, encryption and key management, logging and monitoring and application security
- Familiarity with cloud-based environments and technologies with associated auditing methodologies
- Excellent documentation and communication skills
QUALIFICATIONS
- Bachelor's or Master's degree in a computer or information management field
- Cybersecurity certifications such as CISSP, CISA, CRISC, or CISM are preferred
- 5-7 years’ experience in an information security compliance, audit or risk management role with hands on experience in a multitude of compliance initiatives including but not limit to
- SOX-40
- PCI-DS
- COSO, CoBIT, ISO2700
- NIST (CSF & RMF
- HIPA
- EU-GDPR, CCPA
- SSAE-16 [SOC-1 and SOC-2
- Experience with developing and implementing automation for controls and compliance is preferred
- Strong analytical and problem-solving skills with the ability to function as a change agent
- Strong skills with intermediate to advanced level expertise with Excel and PowerPoint
- Demonstrated experience in working in a high paced multi-tasking environment.
- Understanding of security metrics and creation of effective dashboards for management review and consumption.