Senior Analyst IT Security Compliance

CBS Corporation New York , NY 10007

Posted 2 months ago

Senior Analyst IT Security Compliance

REF#: 31961


JOB TYPE: Full-Time Staff




CBS Corporation (NYSE: CBS.A and CBS) is a mass media company that creates and distributes industry-leading content across a variety of platforms to audiences around the world. The Company has businesses with origins that date back to the dawn of the broadcasting age as well as new ventures that operate on the leading edge of media. CBS owns the most-watched television network in the U.S. and one of the world's largest libraries of entertainment content, making its brand - "the Eye" - one of the most recognized in business. The Company's operations span virtually every field of media and entertainment, including cable, publishing, local TV, film, outdoor advertising, and interactive and socially responsible media. CBS's businesses include CBS Television Network, The CW (a joint venture between CBS Corporation and Warner Bros. Entertainment), Showtime Networks, CBS Sports Network, TVGN (a joint venture between CBS Corporation and Lionsgate), Smithsonian Networks, Simon & Schuster, CBS Television Stations, CBS Television Studios, CBS Global Distribution Group (CBS Studios International and CBS Television Distribution), CBS Interactive, CBS Consumer Products, CBS Home Entertainment, CBS Films and CBS EcoMedia.


Participate in the development & implementation of a security focused audit and control program that aligns with ISO 27001, NIST, PCI Data Security Standard and CBS security standards to test and monitor the IT production environments for potential system integrity exposure and control weaknesses. Conduct internal information technology system audits, identify & assess risks and work with internal control owners to appropriately define and implement risk mitigation plans.


  • Conduct a security focused PCI DSS and IT control assessments, identify potential weaknesses and create value added, relevant solutions that address internal control needs.

  • Develop and maintain security related network and business process flow documentation supporting PCI compliance requirements. Advise process and technology owners on documentation requirement and support of testing where appropriate.

  • Create, and execute security related IT control tests across applications, databases, operating systems, and network devices

  • Complete PCI Self Assessment Questionnaires and other related regulatory documentation required for annual attestation. Gather and retain support required to validate the claims made in the assessment.

  • Partner with all levels of IT management to ensure that security testing is conducted in a cooperative, timely and efficient manner with value added reporting and cost effective recommendations being provided to management to strengthen controls

  • Monitor security remediation plan execution through 'deficiency closed' phase



  • Five (5) or more years of technology and audit experience (general technology controls, application, and pre-implementation system development reviews) within a public accounting, and/or internal audit function

  • Two or more years of experience with internal controls evaluation and testing, COSO, COBIT, ITIL, ITGCC, and ISO, SOX 404 requirements including all phases of planning, evaluation, documentation, testing and remediation.

  • Demonstrated proficiency of technology auditing control disciplines including thorough and general knowledge in security and one or more relevant areas of technical specialization (application development, change management, or operations)

  • Ability to think analytically; communicate complex issues, and develop control recommendations

  • Effective written and verbal communication skills with the ability to present control analysis and recommendations with clarity and professionalism

  • A BA or BS Degree or equivalent in Information Systems, Computer Science, or related field

  • Professional Certification is preferred (CISA, CISSP, PCIP or equivalent)





Equal Opportunity Employer Minorities/Women/Veterans/Disabled

See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Compliance Analyst Regulatory Exams Management

Mcgraw-Hill Financial

Posted 5 days ago

VIEW JOBS 11/14/2018 12:00:00 AM 2019-02-12T00:00 JobDescription : The Role: Senior Compliance Analyst – Regulatory Examination Management The Location: New York, NY The Team: The team is responsible for managing the regulatory examinations for North America. The Impact: The position is an advocate for S&P and maintains S&P's reputation and good will with regulators through inspections and inquiries. What's in it for you: Exposure working with regulators and personnel of all levels and business functions in a global organization. Responsibilities: * Assisting in determining strategy to manage regulatory requests, on-site inspections and other inquiries. * Assisting in directing and advising relevant business units in identifying and producing responsive documents, ensuring quality of documents produced, and managing the timely production to ensure deadlines are met on behalf of the firm. * Liaising with Legal representatives to maintain legal privilege and confidentiality * Assist in identifying the appropriate personnel to represent S&P in meetings and interviews with regulators. * Assist in setting meeting agendas, determine interview scope and scheduling. * Participate in briefing personnel for meetings and interviews and conduct preparatory sessions. * Secure administrative support for regulatory staffs' visit to S&P offices. * Maintain documentation of all correspondence received and sent, log of requests received and status of response, log and copies of documents provided, and log of interviews and meetings held. What We're Looking For: * The ideal candidate will have a bachelor's degree or equivalent. * 2 years plus of previous experience related to regulatory examination desired. * Some experience working with compliance monitoring systems, tracking compliance issues and issuing reports preferred. * Familiarity with risk management principles and philosophies. * Able to prioritize tasks and work well under pressure. * Self-motivated and well-organized. * Excellent project management skills. * Excellent presentation, writing and analytical skills; able to understand and communicate industry rules and regulations effectively to employees at all levels of the business. * Strong interpersonal skills; ability to drive consensus across business groups and deal with challenging situations at all levels of the business in a resilient, confident and practical manner. * Interest in global work and ability to work with various jurisdictional regulations. About S&P Global Ratings S&P Global Ratings is the world's leading provider of independent credit ratings. Our ratings are essential to driving growth, providing transparency and helping educate market participants so they can make decisions with confidence. We have more than 1 million credit ratings outstanding on government, corporate, financial sector and structured finance entities and securities. We offer an independent view of the market built on a unique combination of broad perspective and local insight. We provide our opinions and research about relative credit risk; market participants gain independent information to help support the growth of transparent, liquid debt markets worldwide. S&P Global Ratings is a division of S&P Global (NYSE: SPGI), which provides essential intelligence for individuals, companies and governments to make decisions with confidence.For more information, visit Mcgraw-Hill Financial New York NY

Senior Analyst IT Security Compliance

CBS Corporation