Information Security Assurance Analyst II (Relocation Opportunity)

Benefitfocus Columbia , SC 29209

Posted 11 months ago

Position is located in Charleston, SC

The Information Security Assurance Analyst is responsible for assisting with the SOC, PCI, HIPAA and other regulatory audits to include but not limited to the creation of audit plans, auditing security controls, policies and procedures and analysis of data in order to ensure regulatory compliance.

Job Duties:

  • Organizes compliance program by creating reports and metrics from Data Loss Prevention tools, maintaining technical policies and rules (including Regular Expressions), and working with other teams to communicate changes made.

  • Supporting assurance functions of the organization by using various compliance tools.

  • Attains compliance by isolating and resolving non-compliance issues; recommending remediation to technical issues.

  • Development of APIs to integrate compliance tools with other data sources (e.g. HR systems, Cybersecurity tools).

  • Ability to write solution workflow diagrams, system documentation, playbooks, etc.

  • Prepares compliance reports by collecting, analyzing, and summarizing measurement data and trends.

  • Updates job knowledge by tracking and understanding emerging compliance engineering practices and standards; participating in educational opportunities and professional organizations; reading professional publications; maintaining personal networks.

  • Enhances engineering and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments.

  • Prior experience auditing and performing quality control actions of audits.

Required Minimum Qualifications:

  • Bachelor's Degree in related field and 3+ years of experience in Information & Network Security or IT Compliance.

  • Strong technical, analytical, interpersonal, communication and writing skills Strong verbal and written communication skills with ability to work in a team setting

  • Good understanding of fundamental security and network concepts (operating systems, databases, intrusion/detection, TCP/IP, ports, etc.)

Preferred Qualifications:

  • Information Technology experience in the Healthcare or SaaS Industry

  • Experience with GRC tools for information gathering and reporting

  • Knowledge of government and/or industry regulatory requirements (SOC, HITRUST, PCI, SOX, HIPAA, etc.)

  • Knowledge/understanding of security standards (e.g. NIST, STIG, etc.)

  • One or more of the following Certifications: CISSP, CRISC, CISA, CCNP, CISM

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Security Engagement Manager


Posted 4 days ago

VIEW JOBS 2/13/2020 12:00:00 AM 2020-05-13T00:00 A career in Information Security, within Internal Firm Services, will provide you with the opportunity to develop and support our internal security technologies and services across the entire global and local PwC network. You'll focus on being the forefront of designing, developing, and implementing information technology including hardware, software, and networks that enhances security of internal information and protect our firms intellectual assets. To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be an authentic and inclusive leader, at all grades/levels and in all lines of service. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future. As a Manager, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to: * Pursue opportunities to develop existing and new skills outside of comfort zone. * Act to resolve issues which prevent effective team working, even during times of change and uncertainty. * Coach others and encourage them to take ownership of their development. * Analyse complex ideas or proposals and build a range of meaningful recommendations. * Use multiple sources of information including broader stakeholder views to develop solutions and recommendations. * Address sub-standard work or work that does not meet firm's/client's expectations. * Develop a perspective on key global trends, including globalisation, and how they impact the firm and our clients. * Manage a variety of viewpoints to build consensus and create positive outcomes for all parties. * Focus on building trusted relationships. * Uphold the firm's code of ethics and business conduct. Job Requirements and Preferences: Basic Qualifications: Minimum Degree Required: High School Diploma Minimum Years of Experience: 4 year(s) in progressive professional roles involving information security and/or IT management. Preferred Qualifications: Degree Preferred: Bachelor Degree Preferred Knowledge/Skills: Demonstrates extensive knowledge and/or a proven record of success in the following areas: * Utilizing information security business practices and security technology as applied in the context of a broader understanding of the functional area and related systems and processes; * Developing new technical domain subject matters; * Resolving complex problems by applying continuously significant independent judgment through collaborating with others; * Influencing others through a small team of direct reports, through work on projects and in teams, and/or through leading portions of larger projects; * Managing efforts within business engagement and relationship management space; * Encouraging improvement and innovation within BISO Services and developing less-experienced staff through coaching and written/verbal feedback; * Building and maintaining relationships across the network of firms to effectively deliver security activities on behalf of NIS; and, * Executing tasks aligned to CISO pillar with autonomy. Demonstrates extensive abilities and/or a proven record of success in the following areas: * Managing multi-function relationships throughout major transformation; * Balancing business stakeholders and a central service organization; * Navigating a multifaceted, matrix organization; * Collaborating with multiple stakeholders across functional and technical skillsets; * Conducting analysis of Line of Service needs in order to make appropriate decisions for the implementation of NIS global security strategy; * Engaging with Line of Service stakeholders to assess security threats/vulnerabilities and manage business risk; * Facilitating Line of Service support from Security Architecture, Engineering, Innovation, and Transformation (SAEIT) and Cyber Security Service Management throughout the NIS service lifecycle; * Assessing service availability, adoption rates, and maturity to manage risk to business programs and processes; * Governing Lines of Service for compliance with PwC's Information Security Policy (ISP) and legal/regulatory frameworks; and, * Engaging with Global IT and Applications to review security controls against ISP. All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC is proud to be an affirmative action and equal opportunity employer. For positions based in San Francisco, consideration of qualified candidates with arrest and conviction records will be in a manner consistent with the San Francisco Fair Chance Ordinance. Pwc Columbia SC

Information Security Assurance Analyst II (Relocation Opportunity)