IT & Cybersecurity Compliance Specialist

Key Responsibilities

Compliance Framework Management:

• Assist in the development, implementation, and maintenance of following IT and cybersecurity compliance frameworks
• Stay up to date with evolving cybersecurity related regulatory changes, and industry best practices.

Policy & Procedure Development:

• Contribute to the creation, review, and update of IT security policies, standards, guidelines, and procedures to ensure alignment with compliance requirements.
• Communicate compliance requirements and policy changes to relevant stakeholders.

Risk Assessment & Management:

• Participate in IT risk assessments to identify, evaluate, and prioritize potential security vulnerabilities and compliance gaps.
• Support the development and implementation of remediation plans for identified risks.

Audit & Assurance:

• Act as a key liaison during internal and external IT and cybersecurity audits.
• Gather, organize, and provide evidence required for audit requests.
• Track and monitor the progress of audit findings and remediation efforts.

Control Monitoring & Testing:

• Assist in the regular monitoring and testing of IT security controls to ensure their effectiveness and compliance.
• Identify control deficiencies and recommend corrective actions.

Vendor Risk Management (VMR):

• Support the assessment of third-party vendor security postures and compliance with organizational requirements.

Training & Awareness:

• Contribute to the development and delivery of IT security and compliance awareness training programs for employees.

Documentation & Reporting:

• Maintain accurate and comprehensive documentation of compliance activities, risk assessments, and audit results.
• Prepare regular reports on compliance status, key risks, and remediation progress for management.
• This role will involve tremendous amount of Documentation work & management of same.