This is an environment unlike anything in the high-tech world and the secret of Costco's success is its culture. The value Costco puts on its employees is well documented in articles from a variety of publishers including Bloomberg and Forbes. Our employees and our members come FIRST. Costco is well known for its generosity and community service and has won many awards for its philanthropy. The company joins with its employees to take an active role in volunteering by sponsoring many opportunities to help others. In 2018, Costco contributed over $39 million to organizations such as United Way and Children's Miracle Network Hospitals.
Costco IT is responsible for the technical future of Costco Wholesale, the second largest retailer in the world with wholesale operations in twelve countries. Despite our size and explosive international expansion, we continue to provide a family, employee centric atmosphere in which our employees thrive and succeed. As proof, Costco consistently ranks in the top five of Forbes "America's Best Employers".
The role of every Information Security Governance, Risk and Compliance team member is to support the overarching values and business goals of Costco Wholesale as they relate to meeting legal and regulatory obligations; protecting member privacy, and ensuring a technologically secure operating environment. The Compliance Analyst will support the Policy team through the coordination of ongoing Policy creation and maintenance to ensure continued compliance with PCI, HIPAA, SOX, etc. Support will also include acting as a liaison between the Policy team and the Business and SMEs.
If you want to be a part of one of the BEST "to work for" companies in the world, simply apply and let your career be reimagined.
Leads the creation, implementation, monitoring, and maintenance of security Policies and Standards.
Presents findings, in a professional manner, for policy modifications for improving the overall security posture.
Engages with the Business and SMEs to ensure compliance of IT Policies.
Assists with auditing of IT activities and systems to confirm information security policy compliance.
Proposes solutions to deficiencies found in the Policy and Standards.
Works with IT custodians at different levels in the organization to understand their respective security needs and assists with implementing Policies and Standards.
Assists with auditing of information systems activities and systems to confirm information security policy compliance and provides management with security policy compliance assessments.
Researches and retains currency on PCI, SOX, HIPAA, etc., and adherence to industry standards.
Works with other business and legal departments in response to emerging standards and legislation.
Maintains a strong understanding of current and upcoming regulatory requirements and legislation.
Socializes Information Security policies, standards, and procedures.
Develops and executes project/program plans, coordinates required resources.
Information Security concept knowledge.
Experience meeting compliance deadlines.
Proven ability to work independent of assistance or supervision effectively and efficiently.
Must be a team player and willing to establish a positive working relationship with all areas of the business.
Innovative, creative, and extremely responsive with a strong sense of urgency.
Ability to bridge multiple business and IT teams to meet scheduled deliverables.
Ability to clearly communicate IT Security matters to executives, auditors, end users, and engineers using appropriate language, examples, and tone.
Project Management skills and experience.
Understanding of networking technologies, such as firewalls, routers, load balancers, and proxies.
Working knowledge of information systems security standards and practices (e.g., access control and system hardening, system audit and log file monitoring, security policies, and incident handling).
Apart from any religious or disability considerations, open availability is needed to meet the needs of the business. If hired, you will be required to provide proof of authorization to work in the United States. Applicants and employees for this position will not be sponsored for work authorization, including, but not limited to H1-B visas.
Costco Wholesale Corporation