Title: IT Compliance Specialist
Description: STG is a SEI CMMi Level 5 company with several Fortune 500 and State Government clients.
STG has openings for IT- Compliance Specialist. These positions are based in Auburn Hills, MI for a large Fortune 500 Automotive firm. Please note that these project assignments are with our own direct clients.
We do not go through any vendors. STG only does business with direct end-clients. These positions are expected to be long term. STG will provide immigration and permanent residency sponsorship assistance to those candidates who need it.
The Compliance Specialist will be a member of the team ensuring IT compliance practices are being implemented and followed. The candidate should have a thorough understanding of SOX IT General Controls, Application Level Controls (ALC) and Data Privacy regulations.
Coordinate and assist with testing and evaluating IT systems and controls for SOX compliance.
Make recommendations for enhancement of IT system controls and process improvements.
Guide the project teams on IT risk and control / compliance requirements for new systems.
Develop and foster effective working relationships within IT, Key Business Partners, Corporate Audit, Legal, GCA, ICFR, External Audit and Compliance personnel and ensure timely and complete communication.
Support Vendor Risk Assessments reviews.
Participate on the Global SOX and Data Privacy teams.
Support review of adherence to the European Commission General Data Protection Regulation (GDPR).
Support Privacy by Design (PbD) projects as appropriate.
Promote data privacy awareness events and Privacy Advocate development.
Support data privacy management data inventory, data flow diagrams, identifying databases and servers where PII is stored.
Work with business owners, ICT support, and Info Sec to understand processes for access to applications/systems processing/storing PII.
Manage Remediation/Process Improvements remediation activities from audits and other assessments, Privacy Awareness Training, maintain checklists, support Security initiatives, data privacy statements, leverage other tools for privacy governance/compliance/analysis, and coordination of privacy events.
Perform Privacy Impact Assessment (PIA) / Data Privacy Impact Assessments (DPIA).
Provide support to Corporate Audit Privacy Shield and Vendor/Internal assessments.
Collaborate with Legal and Procurement to develop and implement process to administer GDPR requirements to existing supplier base.
Collaborate with InfoSec to conduct detailed vendor risk assessment via review of the Privacy Questionnaire completed by the vendor. Assess the adequacy of the vendors privacy practices, identify and report any gaps or risks to relevant business stakeholders.
Assist in the identification, implementation, and maintenance of organization information privacy policies and procedures.
Bachelor's Degree preferred
Experience in IT Audit/Compliance, and/or security/privacy operations
In-depth knowledge of business processes as well as process controls and risks with an understanding on how this relates to the IT environment and audit procedures.
Certified Information Systems Auditor (CISA) is preferred
Managed IT general computing controls risk / SOX / compliance process including updates to the annual testing, test execution, review of test results, recommending solutions to gaps and addressing gaps with control owners
NO THIRD PARTY CANDIDATES
Resume Submittal Instructions: Interested/qualified candidates should email their word formatted resumes to Ms.
Ila at and /or contact at . In the subject line of the email please include: First and Last Name CS-MI
Corporate Overview of STG:
Established in 1985, Systems Technology Group (STG) is a fast growing IT consulting and systems integration services firm. STG is a SEI CMMi Level 5 company with expertise in Application Development, Application Management, Web Services (SOA), Data Warehouse, Business Intelligence / Analytics, Wireless Solutions, Legacy migrations and Project Management. STG is proud that clients like Ford Motor Company, Sears Corporation, Chrysler, LLC, Mercedes Benz, United Health, General Motors, State of Texas, State of Michigan, State of Minnesota, State of Georgia, and others trust their IT services needs to STG. STG has offices in North America, Europe and India to service our clients global IT needs.
CISA, SOX, Audit
Systems Technology Group Inc. (Stg)