InfoSec Compliance Analyst

Location: Issaquah, WA
Date Posted: 03-11-2019
Job Description
 The role of every Information Security Governance, Risk and Compliance team member is to support the overarching values and business goals as they relate to meeting legal and regulatory obligations; protecting member privacy; and ensuring a technologically secure operating environment. The Compliance Analyst (Policy) will support the Policy Team through the coordination of ongoing Policy creation/maintenance to ensure continued compliance to PCI, HIPAA, SOX, etc. Support will also include acting as a liaison between the Policy Team and the Business and SME’s.

Tasks and responsibilities
  • Information Security Concept Knowledge.
  • Meets compliance deadlines.
  • Researches and retains currency on PCI, SOX, HIPAA, etc., and adherence to industry standards.
  • Maintains a strong understanding of current and upcoming regulatory requirements and legislation.
  • Socializes Information Security policies, standards and procedures.
  • Works effectively and efficiently independent of assistance or supervision.
  • Develops and executes project / program plans, coordinates required resources.
  • Works with other business and legal departments to in response to emerging standards and legislation.
  • Must be a team player and willing to establish a positive working relationship with all areas of the business.
  • Innovative, creative, and extremely responsive with a strong sense of urgency.
  • Ability to bridge multiple business and IS teams to meet scheduled deliverables.
  • Ability to clearly communicate IS Security matters to executives, auditors, end users, and engineers using appropriate language, examples, and tone.

Recommended skills, abilities, and certifications
  • Project Management skills and experience
  • Understanding of networking technologies, such as firewalls, routers, load balancers, and proxies
  • Working knowledge of information systems security standards and practices (e.g., access control and system hardening, system audit and log file monitoring, security policies, and incident handling)
  • Successful internal candidates will have spent one year or more on their current team.
this job portal is powered by CATS