Sr. Cybersecurity Analyst, Compliance

We are currently seeking an experienced Senior Cybersecurity Compliance Analyst to support adherence to various regulatory compliance requirements including SOX ITGC requirements. The role will work cross-functionally with IT, Internal Audit, Legal, and other key stakeholders to ensure all applicable IT and Cybersecurity compliance requirements are being met.

You Will

• Provide support to process and control owners and cross-functional teams to ensure controls are designed and implemented effectively
• Leads efforts to coordinate the implementation of new regulatory requirements or expansion of in-scope applications and systems as required
• Participate in annual walkthroughs with process and control owners across the company and internal/external auditors
• Coordinate the response to audit requests and other internal/external reviews/assessments performed as needed
• Update and maintain the cybersecurity controls library to remain compliant with regulatory requirements
• Monitor compliance with cybersecurity policies and standards, including periodic reviews and/or control testing
• Ensure timely and accurate notification and escalation of actual or potential noncompliance risks to key stakeholders
• Collect metrics for reporting and monitoring compliance with policies and standards, processes, and controls

You Bring

• 5+ years of experience consulting or working in IT and Cybersecurity compliance management
• Bachelor's degree or equivalent industry experience, post-Graduate degree is preferred
• Strong understanding of risk, compliance, and ability to define and operationalize IT and Cybersecurity processes and controls
• Significant audit and advisory-related SOX ITGC experience including driving control design and implementation with engineering, business, and accounting/finance teams
• Competency in cybersecurity frameworks including ISO 27001, NIST CSF, NIST 800-53, and PCI
• Certified in one or more of the following: CRISC, CISA, CISM, CISSP, SANS GIAC Security Certifications, etc.
• Experience with managing and supporting a variety of support inquiries, projects, initiatives, and process improvements related to regulatory compliance, governance, and audits.
• Communicate and present compliance risks concisely and effectively based on the appropriate level of management and stakeholder groups
• Ability to work well in a demanding, dynamic environment, and meet overall objectives
• An understanding of and implementation experience with GRC tools (e.g., ServiceNow, RSA Archer, AuditBoard, etc.) is preferred
• Excellent interpersonal skills with the ability to communicate effectively verbally and in writing with all levels within the organization, including both technical and non-technical personnel
• Automobile and/or manufacturing industry experience is a plus