IT Compliance Analyst (Tarrytown, NY)

Posted 7 Days Ago
Tarrytown, NY
90K-100K Annually
Junior
Logistics • Productivity • Software • Transportation • Business Intelligence
The Role
The IT Compliance Analyst will enhance information security by managing documentation, security training, compliance with Sarbanes Oxley, and vendor audits. Responsibilities include developing policies, conducting risk mitigation, and optimizing processes to improve security controls across the organization.
Summary Generated by Built In

Job Title: IT Compliance Analyst Reports To: VP of IT and CISO
Department: Information Technology FLSA Class: Exempt

Prestige Consumer Healthcare is a company that focuses on product innovation and quality in the over-the-counter healthcare and women’s health categories to better improve the lives of our customers and their world. For generations, our trusted brands have helped consumers care for themselves and their loved ones. We are one of the largest independent providers of over-the-counter products in North America, and we are constantly improving and creating products that match the ever-changing lifestyles and needs of people and families everywhere.
JOB SUMMARY:
SAP is a very flexible, fully integrated and complex ERP system that will allow PCH to continue to sustain growth for many years.
PCH IT will need to address the following areas:

  • Risk Mitigation: Mitigate risk by maintaining information security documentation and assisting in the development of security policies and procedures. We will also require additional investment in its governing, tools and processes.
    • Growth of Information Security Policy – support Prestige to elevate operational processes and formalize across the organization
    • Optimization: Continually look for improvements/new opportunities to improve efficiencies & benefits in the business
    • Training: Manage the Cyber Security training programs and fake Phish attacks performed at Prestige
    • Inter-module Dependencies: Security Compliance Officer will work with Network teams and IT management to enhance security controls and documentation


MAJOR RESPONSIBILITIES/ACTIVITIES:

  • Work with internal and external auditors to manage the Sarbanes Oxyley Compliance and Segregation of Duties
  • Keep all global IT SOP’s current and reviewed on an annual basis
  • Create and update all IT policies and procedures related to NIST CSF compliance
  • Manage the Cyber security training program and fake phishing attacks to company employees currently in Proofpoint
  • Train staff on new security policies and procedures
  • Manage vendor security compliance audits and support recommendations
  • Responsible for leading efforts that include collecting and organizing written responses and documentation, leading calls and meetings to gather information from vendors, and ensuring that all follow-up communications and remediation items are completed on time. You will be responsible for scheduling and coordinating vulnerability assessments, penetration tests
  • Organizing and conducting meetings of the firm’s cloud security review team, coordinating the assessment of vendors, and leveraging team members’ expertise in the vendor review process
  • Creating and presenting regular reports to IT senior technology management
  • Make recommendations and advise on organization-wide processes
  • Maintain Global IT SOP’s and procedures


QUALIFICATIONS:

  • A bachelor’s degree, a Diploma of higher education
  • Demonstrate excellent communication and interpersonal skills
  • Background in working with auditors for Sarbanes Oxyley compliance
  • Familiarity with NIST CSF compliance
  • Knowledge of Cloud compliance and dealing with 3rd party vendors for those Cloud compliance security requirements
  • Self-starter in developing original documents, SOPS’s, Global Policies and procedures
  • A minimum of 2-3 years of experience focused on information security is required
  • A minimum of two (2) years of experience applying project management concepts is required
  • Background in developing Global SOP’s.
  • Background in Cyber Security training and controls.
  • Familiarity with NIST CSF compliance
  • Excellent written and verbal communication skills
  • Must have business process knowledge
  • Must be a team player and must contribute at the team level


Education and Training Requirements:

  • Requiring at least 5+ years with documentation around IT policies and procedures
  • Must have Enterprise level experience with solutions and driving continuous improvement throughout the organization
  • Must have professional experience


Travel: 5% ability to travel via car, plane, rail.
LANGUAGE SKILLS:
Ability to read, analyze, and interpret general business periodicals, professional journals, technical procedures, or governmental regulations. Ability to write reports, business correspondence, and procedure manuals. Ability to effectively present information and respond to questions from groups of managers, clients, customers, and the general public.
MATHEMATICAL SKILLS:
Ability to calculate figures and amounts such as discounts, interest, commissions, proportions, percentages, area, circumference, and volume. Ability to apply concepts of basic algebra and geometry.
REASONING ABILITY:
Ability to apply common sense understanding to carry out instructions furnished in written, oral, or diagram form. Ability to deal with problems involving several concrete variables in standardized situations.
PHYSICAL DEMANDS:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to sit. The employee frequently is required to talk or hear. The employee is occasionally required to stand; walk; use hands to finger, handle, or feel; reach with hands and arms; and stoop, kneel, crouch, or crawl. The employee must occasionally lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, and ability to adjust focus.
WORK ENVIRONMENT:
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
The noise level in the work environment is usually moderate.
Salary Range: $90k - $100k
No Sponsorship: Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.
#HybridWork: We follow a Hybrid work schedule. All applicants must be able to work in our Tarrytown office Tues/Wed/Thurs (remote on Mon/Fri).
Work Hours: 40 hours per week.
 

Top Skills

SAP
The Company
Scottsdale, AZ
200 Employees
On-site Workplace
Year Founded: 2017

What We Do

EmergeTech, LLC is disrupting the transportation industry with technology solutions that bring much-needed visibility and efficiency to the $500B logistics market. Our solutions create cost savings and productivity gains for shippers, carriers, and brokers – while reducing the carbon footprint of this diesel-heavy industry.

Gallery

Gallery

Similar Jobs

Canoe Logo Canoe

Compliance Analyst

Artificial Intelligence • Fintech • Information Technology • Machine Learning • Financial Services
Remote
Hybrid
New York, NY, USA
170 Employees
80K-100K Annually

Galaxy Logo Galaxy

Core Compliance Analyst/Associate

Blockchain • Fintech • Financial Services • Cryptocurrency
New York, NY, USA
335 Employees
100K-135K Annually
Utica, NY, USA
5756 Employees
55K-65K Annually

MongoDB Logo MongoDB

Compliance Analyst, Public Sector

Big Data • Cloud • Software • Database
New York, NY, USA
2382 Employees
76K-130K Annually

Similar Companies Hiring

Jobba Trade Technologies, Inc. Thumbnail
Software • Professional Services • Productivity • Information Technology • Cloud
Chicago, IL
45 Employees
RunPod Thumbnail
Software • Infrastructure as a Service (IaaS) • Cloud • Artificial Intelligence
Charlotte, North Carolina
53 Employees
Hedra Thumbnail
Software • News + Entertainment • Marketing Tech • Generative AI • Enterprise Web • Digital Media • Consumer Web
San Francisco, CA
14 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account