Connection
Compliance and Risk Analyst - PCC
Join to apply for the Compliance and Risk Analyst - PCC role at Connection.
Overview We calm the confusion of IT by guiding the connection between people and technology. If a customer is looking for a better way to manage their warehouse inventory, equip their workforce, or secure their data, we make it happen. All it takes is finding the right combination of tech hardware, software, cloud solutions, and support services. That’s what we do. We’re the IT Department’s IT Department.
Responsibilities The Compliance and Risk Analyst reports directly to the VP, Information Security and Compliance. The Analyst works with minimal supervision to ensure Connection's compliance with all applicable rules and regulations regarding cyber security and privacy matters. The Analyst is instrumental in identifying, analyzing, and providing security compliance solutions that reduce operational risk of proposed and in-place information processing systems. The Analyst works directly with internal and external third‑party auditors to conduct regulatory and industry‑prescribed corporate audits. Develops compliance metrics as well as design methods to monitor and measure infrastructure activities and provides compliance reporting. Using established security frameworks, the Analyst applies security best practices and standard configurations for information processing operations. The Analyst works with senior managers across the organization to develop business processes compliant with laws, rules, regulations, and corporate policy.
Essential Tasks
Collaborates with various audiences both internally and externally gathering governance/risk/compliance solutions.
Participates in the annual Sarbanes‑Oxley internal and external ITGC audits.
Participates in annual PCI SAQ audits and assists with quarterly compliance reviews as requested.
Participates in corporate and vendor SSAE18 SOC 2 Type II programs/audits.
Conducts audit tasks as required such as organizing meetings, audit walk‑throughs, etc.
Attends or participates in Information Security training, webcast, podcast events to maintain subject matter proficiency.
Creates automated and manual reports that identify the overall compliance status of information processing systems.
Consolidates materials to create quarterly compliance reports.
Performs all other duties or special projects as assigned.
Salary USD $65,500.00 – $83,129.00 per year.
Qualifications
Understanding of compliance solutions.
SOX audit experience including testing IT General Controls.
Familiarity with SSAE18 SOC 1,2,3 Type I,II compliance programs and audit procedures.
Excellent communication and interpersonal skills with ability to work effectively with senior management throughout the organization.
Strong verbal communication skills to effectively lead meetings.
Seniority level: Entry level
Employment type: Full‑time
Job function: Finance and Sales
Industry: IT Services and IT Consulting
Referrals increase your chances of interviewing at Connection by 2x.
#J-18808-Ljbffr
Overview We calm the confusion of IT by guiding the connection between people and technology. If a customer is looking for a better way to manage their warehouse inventory, equip their workforce, or secure their data, we make it happen. All it takes is finding the right combination of tech hardware, software, cloud solutions, and support services. That’s what we do. We’re the IT Department’s IT Department.
Responsibilities The Compliance and Risk Analyst reports directly to the VP, Information Security and Compliance. The Analyst works with minimal supervision to ensure Connection's compliance with all applicable rules and regulations regarding cyber security and privacy matters. The Analyst is instrumental in identifying, analyzing, and providing security compliance solutions that reduce operational risk of proposed and in-place information processing systems. The Analyst works directly with internal and external third‑party auditors to conduct regulatory and industry‑prescribed corporate audits. Develops compliance metrics as well as design methods to monitor and measure infrastructure activities and provides compliance reporting. Using established security frameworks, the Analyst applies security best practices and standard configurations for information processing operations. The Analyst works with senior managers across the organization to develop business processes compliant with laws, rules, regulations, and corporate policy.
Essential Tasks
Collaborates with various audiences both internally and externally gathering governance/risk/compliance solutions.
Participates in the annual Sarbanes‑Oxley internal and external ITGC audits.
Participates in annual PCI SAQ audits and assists with quarterly compliance reviews as requested.
Participates in corporate and vendor SSAE18 SOC 2 Type II programs/audits.
Conducts audit tasks as required such as organizing meetings, audit walk‑throughs, etc.
Attends or participates in Information Security training, webcast, podcast events to maintain subject matter proficiency.
Creates automated and manual reports that identify the overall compliance status of information processing systems.
Consolidates materials to create quarterly compliance reports.
Performs all other duties or special projects as assigned.
Salary USD $65,500.00 – $83,129.00 per year.
Qualifications
Understanding of compliance solutions.
SOX audit experience including testing IT General Controls.
Familiarity with SSAE18 SOC 1,2,3 Type I,II compliance programs and audit procedures.
Excellent communication and interpersonal skills with ability to work effectively with senior management throughout the organization.
Strong verbal communication skills to effectively lead meetings.
Seniority level: Entry level
Employment type: Full‑time
Job function: Finance and Sales
Industry: IT Services and IT Consulting
Referrals increase your chances of interviewing at Connection by 2x.
#J-18808-Ljbffr