Job Description:
• Leading/Managing External Audits including MARSe, ARC-AMPE (NIST 800-53 rev5), SOC2 Type2, ISO27001, HITRUST
• Assisting in audit activities – Interfacing with the Auditors, translating audit evidence requests to actual requirements and working with teams to collect and submit the evidence.
• Leading development and execution of new compliance policies and procedures within the organization.
• Conducting Gap Analysis between different frameworks and keeping up with changing compliance requirements and amendments to regulations.
• Evaluating internal operational and procedural compliance.
• Analyzing and updating existing compliance policies and related documentation.
• Providing Privacy requirements to the engineering and business teams
Requirements:
• At least 6 years of experience leading/managing with Audits, governance, risk and compliance within Information Technology or Information Security.
• Demonstrated leadership in managing audits and compliance across the organization
• Knowledge working with CMS (Center of Medicaid and Medicare Services) Security frameworks like MARSe, ARC-AMPE.
• In-depth knowledge of industry compliance requirements related and standards such as, NIST SP800-53, ISO, and SOC2
• Bachelor’s degree in computer technology, computer security or audit.
• Exceptional ability to formulate and write compliance policies, procedures, and related documentation.
• Advanced analytical, problem solving and continuous improvement abilities.
Benefits:
• Health insurance
• Professional development opportunities
• Paid time off