Security Compliance Specialist Resume Sample
Ansley Marquardt
2724 Korbin Islands,
Detroit,
MI
+1 (555) 642 1454
Work Experience
Security Compliance Specialist
01/2016
-
PRESENT
Philadelphia, PA
- Performing risk assessments
- Knowledge of security control frameworks, regulatory guidelines, and policy/standards development
- Excellent analytical and research skills to conduct risk assessments and investigations
- The technical ability to interact with IT Operational teams with an understanding of their operational requirements and as aligned with IT Security and Compliance requirements
- Evaluate IT Security and Compliance Process and provide recommendations for process improvement opportunities
- Identify IT Security and Compliance controls related to a number of regulatory frameworks such as PCI, SOX, HIPAA and Cybersecurity Framework
- Work with team members to develop IT Security and Compliance Programs and control plans
- Provide technical guidance on internal IT Security and Compliance assessments
- Serve as the technical lead for internal customer IT Security and Compliance initiatives
Senior Security Compliance Specialist
05/2009
-
09/2015
Dallas, TX
- Builds and manages relationships with Sr. Management, clients, and staff within IT Security and Compliance to promote awareness of and drive effective Security and Compliance programs
- Responsible for ensuring that communication between IT Security and Compliance and IT Operations team is clear and concise and to act as a mediator when needed
- Presents root cause and trending analysis reports regarding security and compliance programs to Sr. IT Management, Client and peers to drive awareness and continued improvement
- Proven subject matter expertise in a variety of compliance requirements area such as PCI, SOX, HIPAA, NIST, Cybersecurity and/or other federal, state and industry areas of compliance
- Communicates security and compliance observations and prepares written documentation or reports as it relates to assessments, disclosing all significant deficiencies to management
- Demonstrates strong executive presence in meetings to drive awareness and improve compliance controls and programs
- Builds and maintains strong relationships with Senior Leadership, IT Staff and peers as demonstrated through an effective and efficient compliance program
- Demonstrates strong organization skills and time management. Ability to manage multiple tasks / projects while ensuring deadlines are met
- Have a systematic approach to problem solving and an ability to follow project management processes to manage on-time and complete audit events
IT Security Compliance Specialist
01/2005
-
01/2009
Philadelphia, PA
- Various BMO LOBs / Client Relationship Managers
- Technology & Operations Personnel
- Chief Information Security Officer ﴾CISO﴿
- Information Security Officers
- Legal and Procurement
- Experience with technical writing and editing; knowledge of IT and security practices is critical to this role
- Proven ability to learn technical subject matter
- Excellent writing, proofreading and editing skills and keen attention to detail
Education
Whitworth University
2000 - 2005
Bachelor's Degree in Computer Science
Professional Skills
- Excellent written, oral, and interpersonal communications skills with proven ability to champion causes with positive impact and change
- Demonstrates advanced decision and risk analysis skills
- Strong professional, interpersonal, project management and organizational skills
- Strong assurance, governance & risk management skills,
- Security engineering skills with a working knowledge of IA technology and other NIST and ISO standards
- Displays solid relationship management and leadership skills, working collaboratively with cross functional groups
- Experience in a PCI support role or engineering position experience required
How to write Security Compliance Specialist Resume
Security Compliance Specialist role is responsible for security, risk, compliance, research, training, technical, organization, communications, wireless, auditing.
To write great resume for security compliance specialist job, your resume must include:
- Your contact information
- Work experience
- Education
- Skill listing
Contact Information For Security Compliance Specialist Resume
The section contact information is important in your security compliance specialist resume. The recruiter has to be able to contact you ASAP if they like to offer you the job. This is why you need to provide your:
- First and last name
- Telephone number
Work Experience in Your Security Compliance Specialist Resume
The section work experience is an essential part of your security compliance specialist resume. It’s the one thing the recruiter really cares about and pays the most attention to.
This section, however, is not just a list of your previous security compliance specialist responsibilities. It's meant to present you as a wholesome candidate by showcasing your relevant accomplishments and should be tailored specifically to the particular security compliance specialist position you're applying to.
The work experience section should be the detailed summary of your latest 3 or 4 positions.
Representative Security Compliance Specialist resume experience can include:
- Strong client handling skills and is able to raise issues and chase suppliers, departments etc
- Strong assurance, governance & risk management skills
- Strong verbal and written communication skills that positively impact relationships with key businesses’ and 3rd parties’ stakeholders
- Prior experience in a SaaS organization in the capacity of Security Compliance management, is highly desirable
- Demonstrated experience in the design, implementation and monitoring of internal controls, compliance and risk management programs
- Experience working with, and ideally writing, information security policies and standards and/or developing or implementing security-related tools
Education on a Security Compliance Specialist Resume
Make sure to make education a priority on your security compliance specialist resume. If you’ve been working for a few years and have a few solid positions to show, put your education after your security compliance specialist experience. For example, if you have a Ph.D in Neuroscience and a Master's in the same sphere, just list your Ph.D. Besides the doctorate, Master’s degrees go next, followed by Bachelor’s and finally, Associate’s degree.
Additional details to include:
- School you graduated from
- Major/ minor
- Year of graduation
- Location of school
These are the four additional pieces of information you should mention when listing your education on your resume.
Professional Skills in Security Compliance Specialist Resume
When listing skills on your security compliance specialist resume, remember always to be honest about your level of ability. Include the Skills section after experience.
Present the most important skills in your resume, there's a list of typical security compliance specialist skills:
- Excellent communication, cross-functional team collaboration, presentation and technical writing skills and results-oriented problem-solving abilities
- Work effectively with personnel at much higher, equivalent, and lower positions in other reporting lines of the department and the university
- Well-developed analytical and problem-solving skills in a technical environment
- A strong ability to multi-task and manage varying priorities and projects
- Possesses advanced written and verbal communication skills
- Possesses highly developed facilitation, presentation and negotiation skills
List of Typical Experience For a Security Compliance Specialist Resume
1
Experience For Senior Security Compliance Specialist Resume
- Recent working experience with 2 or more of the following frameworks and/or regulations: FedRAMP, FISMA, ISO2700x, PCI, HITRUST, NIST 800-53, GDPR
- Experience auditing under FISMA requirements
- Demonstrated expertise in Microsoft Office Applications (Word, Excel, PowerPoint) and the ability to learn new software applications
- Candidates with lesser relevant experience would be considered for the position of Security & Compliance Specialist
- Perform risk and control assessments to evaluate the design and operating effectiveness of internal controls
- Hands-on experience in scoping, planning and executing audits and projects
- Strong technical aptitude and familiarity with cloud-based technologies and related concepts
2
Experience For Information Security Compliance Specialist Resume
- Responsible for working with internal and external operational partners (e.g., E&Y) in developing and planning audit reviews and monitoring project timelines
- Assist in the creation of and updates to department documentation including operating procedures, RACI charts, and process diagrams
- Successful track record of handling FedRAMP authorization and continuous monitoring activities
- Assist with identifying control ownership and obtaining control design and operation consensus
- Perform ongoing information security risk assessments and compliance testing
- Provides informative and timely status reports using department reporting procedures for both internal EIS and external operational customers
- Engages with global teams to assist with the prevention of complex emerging global threats such as vulnerabilities, malware, data loss and intrusion attempts
3
Experience For IT Security Compliance Specialist Resume
- Reviews security and control processes along with associated documentation and reporting
- Develop new guidelines and project requirements based on incident reporting and analysis
- Serve as the global HR SAP Security PPR– manage all role based permissioning and ensure security practices are maintained
- Serve as the global Success Factors Security PPR – manage all role based permissioning and ensure security practices are maintained
- Coordinate and maintain the annual EEO reporting process and program
4
Experience For Senior IT Security & Compliance Specialist Resume
- Reviews audit trails and access control violations, reporting such violations to Security Analysts and management when necessary
- Coordinate with the Network Team to monitor, analyze, and provide recommendations for shaping LAN and Wireless network traffic
- Thorough understanding of the NIST risk management framework and related industry best practices
- Perfect understanding of security field, specifically in application security and privacy
- Develop dashboards and metrics for measuring efficacy of implemented controls
- Document and perform walkthroughs of key processes, risks, controls, and testing procedures
- Understand technical implementation details necessary to assess and recommend control improvements or identify mitigating controls
- Enable maturation of the Splunk Common Controls Framework & GRC tooling implementation
5
Experience For Senior Information Security Compliance Specialist Resume
- Participates in and supports security training and awareness activities
- Review contracts for compliance with MaritzCX security, business continuity and disaster recovery requirements and recommend appropriate language as necessary
- Plan, conduct and establish remediation plans for PCI Assessments
- Actively engage business units at pre-determined times frame to provide a summary analysis of each business units compliance posture at checkpoints throughout the year
- Provide remediation guidance to technical teams to establish and maintain sustained compliance with PCI-DSS
- Conducts security compliance program activities as specified in the information security policy to assess compliance with the firms’ policies, standards and procedures
- Perform, in collaboration with other groups, thematic reviews and IT Risk assessments (appilcation, third party) including deep dive assessments, scenario analysis and new product or change initiative assessments
- Provides expert advisory on IT Risk framework, policies, standards and guidelines, contributing to their development and testing
- Develop and maintain key relationships in T&O in order to provide advice and oversight on new initiatives
6
Experience For Safety & Security Compliance Specialist Resume
- Engage with domain leads within RBC’s security groups to obtain technical advice as appropriate
- 2 – Maintenance and Support – 50%
- 3 – Incident Management - 20%
- Focal point for the ATM IT group when faced with ATM and related infrastructure threats such as vulnerabilities, malware, data loss and intrusion attempts
- Liase with global IT partners where required to assist with reactive and proactive prevention of threats to the ATM environment
- Promotes a risk aware culture and communicates best practices to business and IT contacts based on facts and lessons learned
- 4 – Leadership and Relationship Management – 5%
- Ensure that employees understand RBC ATM IT and BU vision, and reinforce targeted behaviours
- Work with Policy and Standards team to integrate PCI Compliance aspects into Caterpillar Inc.’s current policy and risk management processes
7
Experience For ATM Security & Compliance Specialist Resume
- Interpret PCI standards to applicability to Caterpillar Inc.’s businesses
- Understand and be fully fluent in all aspects of Caterpillar’s Information Security Enterprise Procedures, Standards, technology controls and industry best practices
- Conducts security compliance program activities as specified in the information security policy to assess compliance with EY’s policies, standards and procedures
- Understand Disney’s information security controls and how they apply to the WDP&R computing environment
- Participate in the annual review of the Nielsen Information Security Policy
- Partner with Employee Relations to ensure all HR policies are posted and updated per regulatory requirements
- Manage the US HR poster compliance program and ensure all US site are within compliance
- Partner with global audit team to ensure all HR SOX controls are within compliance, and coordinate all audits. Counsel, advise, and create any necessary remediation mechanisms and monitor for compliance
- Partner with Legal and EU data privacy team to ensure the US Privacy Shield program is maintained, updated, renewed, and compliant
8
Experience For Security & Compliance Specialist Resume
- Serve as a subject matter in any corporate wide initiatives that impact the protection of Protected Individual Information (PII) and sensitive employee data
- Partner with IT to coordinate and maintain a compliant and secure exit process for all employees globally
- Partner with IT and HRIS to ensure the HR organization has a secure, functional, and efficient electronic environment to perform their day to day tasks
- Ensure that Prophix’s software protects its customer’s information and financial data from unauthorized access, inappropriate use, disclosure, disruption, modification, or destruction to ensure confidentiality, integrity, and availability
- Communicate effectively regarding security, risk, and compliance to senior management compliance status, findings, and risks to operational and executive management
9
Experience For Cyber Security Compliance Specialist Resume
- Maintain broad knowledge of best practices and trends in the field of Information Security and other technologies relevant to systems operated by the Technology teams Continually keep up-to-date on changes to regulatory and compliance landscape as related to information security to evaluate their impacts on the risks and controls
- Monitor industry trends and identify best practices and/or methodologies to implement in-house.Search Jobs US
- Trains and guides IT Compliance Specialists I in day to day responsibilities
- Works with Security Architects, Security Analysts, Security Administrators and other IT and business departments to design effective and efficient procedures and controls to meet IT compliance requirements
- Performs IT security audits related to SOX, HIPAA, PCI, NIST Cybersecurity and other regulatory entities
- Reviews audit findings and creates risk and gap analysis reports
- Recommends remediation activity for compliance activities found deficient and monitors remediation progress
- Monitors changes in the IT regulatory and security landscape and reports on the impact of those changes to IT security and operational processes and procedures
10
Experience For IT Security & Compliance Specialist Resume
- Maintains System Security Policy documentation
- Demonstrated detailed oriented self-starter and the ability to work independently with limited supervision and limited direction, and in collaborative team environments
- Excellent interpersonal, verbal, and written communication skills with the ability to communicate security risk and compliance related concepts to a broad range of technical and non-technical staff
- Actively coordinates the internal and external audits (e.g. PCI, SOX) and serves as point of contact for IT and information security requests
- Document and maintain incident response plans
- Document and maintain Disaster Recovery and Business Continuity plans
- Document and maintain Change Management policies, standards, and procedures and monitor system/infrastructure management to ensure compliance
- Execute multiple concurrent attestation projects that reoccur on various schedules
List of Typical Skills For a Security Compliance Specialist Resume
1
Skills For Senior Security Compliance Specialist Resume
- Experience with writing and interpreting Information Security policies and standards
- Experience with recommending and implementing policy remediation activities
- Assist with PCI-DSS compliance checklists including review and validation of existing controls, documentation and any potential gaps
- Experience with high-level programming languages (e.g. Java, C, C , C#, python) and web application development (JavaScript, PHP, ASP)
- Experience presenting IT security issues to large audiences, forums, or communities
- Experience in compliance programs (FISMA, PCI, ISO 27001, etc.)
- Experience in corporate compliance or audits
- Solid knowledge of the Bank’s Policies and Procedures in relation to IS
- Current and previous hands-on experience on IT security technologies and solutions such as IDM tools, DLP solutions, Firewalls, IPS, VPN devices and so on
2
Skills For Information Security Compliance Specialist Resume
- Experience in Network configuration/design/implementation
- Experience in Problem Determination
- Experience in IPv6
- Experience in Security Standards (ITCS, ISO27K1, ...)
- Experience in RTC
- Experience in security standards (Information Technology Corporate Standards (ITCS), ISO27K1, etc.)
- Experience in Real Time Compression (RTC)
3
Skills For IT Security Compliance Specialist Resume
- Leadership role in previous job experience
- Experience as an IT Compliance Specialist or IT Auditor
- Demonstrated knowledge of HIPAA, PCI, SOX, ISO27000 and NIST Cybersecurity Frameworks
- Work experience in IT in one or more areas of infrastructure, systems management, operations, or security
- Experience in Information Assurance (IA), Information Security (InfoSec)
- Considerable experience in one of the following areas: IT Audit, Information Security, Risk Management
4
Skills For Senior IT Security & Compliance Specialist Resume
- Experience of working within a pressured environment
- In-depth knowledge and experience with standard internal IT controls such as access, change and operations management
- Extensive experience with FedRAMP, NIST or other government compliance frameworks required
- Solid grasp of FedRAMP Control Requirements based on NIST 800-53v4
- Extensive experience with PCI compliance regulations, audits and frameworks required
- Identify and recommend changes in procedures, processes and scope of delivery needed to demonstrate sustained compliance with PCI requirements
- Provide management guidance and expertise for all PCI gaps and help to prioritize remediation targets
- Reduce demand on resource Owners for evidence collection and analysis via use of GRC and related security tools
5
Skills For Senior Information Security Compliance Specialist Resume
- Provide long-term cost-effective remediation solutions/recommendations to address systemic issues or gaps that potentially risk corporate PCI-DSS Compliance
- Experience with ISO27001/2
- Working knowledge of system and network security engineering best practices, operating systems and application auditing
- Understanding SOC2 compliance standards; and,
- Understanding of network protocols and architecture (TCP/IP, ATM, WAN, Bridges, etc.) is required
6
Skills For Safety & Security Compliance Specialist Resume
- Contributing to the development of new subject matter or technical domain specialization related to Information Security Compliance
- Document new systems, businesses or acquired entities, including data mapping and flowcharting
- Ensurance of ATM infrastructure compliance, meeting RBC standards for executive reporting and guidelines
- Review Information Security & IT governance frameworks, leveraging existing frameworks and approaches from the IT Risk CoG
- Provide ongoing guidance, support and reporting to the organization to promote a progressive and sustainable compliance culture
- Coordinate training material and monitoring records and the distribution of regulatory information to the appropriate individuals
- Exposure to reviewing or securing cloud platforms such as Amazon AWS, Microsoft Azure, GCP, etc
- Reduce the company's overall PCI-DSS scope where possible via taking lead on remote scoping practices and procedures
- Provide consultation to business partners when BMO clients have information security related questions as part of an existing or proposed service
7
Skills For ATM Security & Compliance Specialist Resume
- Advises managers and other leaders concerning the overall status of the function’s compliance findings and associated remediation plans and exceptions
- Provides technical and best practice guidance to IT and business, taking into account the specific platform and environment complexities
- English: Fluent, Mandarin: Fluent
- Advanced knowledge of industry directions and trends in Information Security, Risk Management and Regulations
- Completion of security certifications such as CISSP and CISA
- Exhibits advanced knowledge of one or more security processes and technologies
- Is a team player who is self-motivated and goal oriented
- 3rd Party Assessments- Experience reviewing Security Controls, identifying findings, work with monitoring and internal remediation teams to assist vendors with vulnerability remediation plans
- Experience in the Cybersecurity Lifecycle to include: Generating IA requirements, creating IA architecture design, configuring IA audit tools, conducting IA verification and performing IA compliance
8
Skills For Security & Compliance Specialist Resume
- Experience in security architecture design, Security Audit tools, security requirements generation, security testing, administration of security devices such as firewalls, and intrusion detection systems
- Understand available methodologies of authentication and authorization and which is appropriate in particular settings
- Work within own specialty with ability to integrate and coordinate elements of that specialty. Independently apply technical judgment to work assignments to achieve desired outcomes. Interact with hardware and software vendors as appropriate to solve problems
- Understanding Information Security Compliance and Risk Management principles as they are applied in the context of a broader understanding of Information Security systems and processes
- Encouraging improvement and innovation within Information Security Compliance and nurturing and developing less-experienced staff through coaching and written and verbal feedback
- We have a smart, experienced leadership team that wants to do it right and is open to new ideas
- Experience in two or more information security domains is required
9
Skills For Cyber Security Compliance Specialist Resume
- Performing Information Security Compliance tasks with autonomy
- Understanding SOC2 compliance standards; and
- CISSP, CISM, CISA or similar certification [e.g., GIAC Certified ISO-17799 Specialist (G7799)]
- Privacy Certification (e.g., Certified Information Privacy Professional)
- Experience interfacing with and communicating information on complex privacy and security compliance issues to senior management and business units and external parties
- We offer competitive salaries and comprehensive health benefits
- Monitor industry trends and identify best practices and/or methodologies to implement in-house. Basic Qualifications: Experience with security assessment methods and penetration testing techniques
- Takes a proactive approach to tasks and is self-motivated
10
Skills For IT Security & Compliance Specialist Resume
- Strong early on technical hands-on experience on all or some of these: handling Windows systems, Unix/Linux systems, Virtualisation, Networking devices and so on
- Previous hands-on experience in performing system administration tasks on Windows and Linux hosts including installing security patches and making configuration changes to support security requirements
- Experience or exposure on some of the security assurance products such as vulnerability scanning and network assessment tools, GRP tools and so on
- A strong understanding of information security frameworks like ISO27001/ISO27002, NIST CSF, GDPR etc
- Aware of IT risk management principles and procedures
- Strong working knowledge of IA concepts such as patch management, two-factor authentication, host-based security, intrusion detection, security event management, security configurations, system hardening and defense-in-depth
- Technical document preparation skills and verbal communications for presentation of technical information
List of Typical Responsibilities For a Security Compliance Specialist Resume
1
Responsibilities For Senior Security Compliance Specialist Resume
- Perform regular assessments of user access to systems; Collaborate with Security Access Administration (SAA) team to understand user security roles and privileges
- Validate user and system security configurations for compliance with internal and external requirements; Facilitate proper management of reviews by explaining access permissions or providing additional information on request
- Cooperates well under pressure and possesses the ability to prioritise
- Professional experience assessing, coordinating, or performing IT security in a higher-education, financial, or medical field
- Experience of working within a high performing team
2
Responsibilities For Information Security Compliance Specialist Resume
- One year professional experience installing and/or supporting Windows desktops
- Experience in solution design and development or within an infrastructure operations organization supporting LAN/WAN's
- Demonstrated sound judgement, tact, and decision-making ability
- Three years professional experience administering Windows servers
- Three years professional experience administering at least ten Unix / Linux servers in the same institution and department
- Is a strong communicator (written and verbal) at all levels within the company
- Experience working in information security / disaster recovery / business continuity roles
- Experienced with performing testing of compliance in areas such as CPNI
- Experienced in developing compliance policies, standards, guidelines, and procedures
3
Responsibilities For IT Security Compliance Specialist Resume
- Working knowledge of ISO27000 series of standards, PCI, COBIT, ITIL, and Sarbanes Oxley rules surrounding IT
- Working knowledge of SOC1 and SOC2 internal control reports
- Working knowledge of FAA Acquisition Management System (AMS), NAS Enterprise Architecture, and Joint Resource Council policies and procedures
- Familiarity with network and server vulnerability scanning and/or penetration testing
- Lead and/or participate in special project teams supporting general business initiatives outside of the primary security function
- Understands a customer's issue and ability to present compensating controls
- Thorough knowledge of state and federal regulations pertaining to HIPAA compliance program rules
- Thorough knowledge of federal regulations pertaining to PCI compliance program rules
4
Responsibilities For Senior IT Security & Compliance Specialist Resume
- Knowledge of and ability to use and influence organization’s policies, standards, and procedures guiding organizational processes
- Knowledge of IT or quality auditor procedures and tools (not financial/accounting)
- Familiarity with various programming languages - Bash, Ruby, Python, Perl,
- Take ownership, seeing tasks and projects through to satisfaction and completion
- One year professional Windows domain / group policy administration supporting at least ten servers
5
Responsibilities For Senior Information Security Compliance Specialist Resume
- Familiarity with file and system integrity monitoring
- Generate accurate work products without the need for quality reviews
- Act in the capacity of an user access reviewer and attester when delegated by management or as appropriate
- Review access reports to verify access revocations; Escalate issues to SAA or other appropriate access administrators for corrective action
- Prepare and provide updates for monthly internal and external compliance reports; Liaise with business units with compliance responsibilities to collect, report, and retain compliance documentation and reports
- Document and maintain risk-based compliance policies and procedures; Develop various materials for use on ITS’s compliance intranet site
- Respond to internal and external inquiries for information to clarify regulatory requirements; Assist with development of processes to identify, quantify, analyze, and report on PSCU Technology Risk and Compliance status
6
Responsibilities For Safety & Security Compliance Specialist Resume
- Interact and coordinate with appropriate business unit resources for audit participation; Participate in internal audit activities performed for compliance verification
- Implement and maintain attestation documentation sufficient to ensure compliance with regulatory, legal, and corporate or functional related policies and procedures
- Identify ongoing process improvements, operational gaps, and potential remediation steps; assist and/or lead process re-design and coordination of remediation efforts and remediation status reporting
- Maintain knowledge of legislation and regulation changes related to the financial industry; understanding of applicable finance industry security and privacy regulations, procedures and issues, and assist in ensuring the organization remains compliant with such laws and regulations
- Solid experience in IT compliance for Sarbanes Oxley legislation, SSAE16, ISO27001, PDPO etc
- Experience in the use of industrial best practices e.g. COBIT, ITIL, PCI DSS is an added advantage
7
Responsibilities For ATM Security & Compliance Specialist Resume
- Provide Federal Information Security Management Act (FISMA) and Office of Management and Budget (OMB) guidance and support
- Support Information System Security Officer (ISSO)
- Support the analysis and review of information security programs and systems to ensure compliance to federal security policies
- Independently develop a variety of Security Authorization deliverables including: System Security Plans, Security Assessment Reports, Risk Assessment Reports, Privacy Impact Assessments, Annual Assessments, Contingency Plans, FIPS 199 Security Categorizations, Plan of Action and Milestones (POA&M), etc
- Provide guidance on security threats, technology, standards, and practices
- Develop, review and monitor compliance with organizational security policies
- Monitor, track and report on the status of POA&M items
8
Responsibilities For Security & Compliance Specialist Resume
- Proactively manage risks, and systematically resolve or escalate issues in a timely manner
- Broad background in information assurance (IA) activities required to facilitate and coordinate IA activities for a project to obtain an Authorization to Operate (ATO)
- Become an authority on all things audit and compliance
- Coordinate audit requests and meetings between system/control owners and internal/external auditors
- Translate business and control requirements into the design of features and enhancements in our compliance tools
- Participate in system development or acquisition projects and provide guidance to teams on risk and control considerations
- Escalate issues to senior management, develop and negotiate remediation plans and track issues to resolution
- Working knowledge and understanding of COSO, AICPA, COBIT, Sarbanes-Oxley and SOC 1 / SSAE 16 standards and laws and regulations applicable to the assigned area of responsibility
- Lead security and compliance responses to customer security risk assessments and security evaluations
9
Responsibilities For Cyber Security Compliance Specialist Resume
- Participate in vendor security compliance process: periodic audit of vendors’ security controls, risk management
- Participate in onsite security audits
- Manage the development, maintenance and enforcement of information security policies, standards, and processes to ensure alignment with business requirements information technology strategy legal, regulatory, and industry requirements and leading industry standard frameworks such as ISO 27xxx, NIST, COBIT
- Interfaces with cross-functional teams (Legal, Customer Support, Sales, and IT) to share the security strategy to achieve higher levels of enterprise security through information sharing and cooperation
- Relevant security certifications (if not present, willing to obtained), such as ISC2 CISSP/SSCP, CompTIA Security+, SANS GSEC, IAPP CIPT, ISACA (CISA, CGEIT, CRISC)
- Excellent communication skills (both verbal and written). The ability to communicate confidently and clearly on conference calls, in meetings and via email, at all levels of the organization is essential
10
Responsibilities For IT Security & Compliance Specialist Resume
- Collaborate with security team members and other departments
- Meaningful professional designations such as CISA, CISA, GIAC, CISM, CISSP Certification
- Successfully pass additional background check to meet FedRAMP requirements
- Perform security audits, risk assessments, business impact analysis and control gap assessments against Splunk common controls framework
- Review policies, standards and methods for accuracy and applicability to required regulatory and compliance areas
- Drive education of process/control owners so they better understand the controls framework and their operational responsibilities
Related to Security Compliance Specialist Resume Samples
Compliance Specialist Resume Sample
Work Experience
• Organizing and facilitating meeting schedules and logistics
• Administrative or operational experience and 1+ years industry experience
• PCG U.S. Group
• Reviews and approves communications and advertising materials, including new and modified products...
Professional Skills
• Strong organisational skills, multi-taskin...
• Excellent organizational skills including ...
• Strong verbal and written communication sk...
Information Security Compliance Resume Sample
Work Experience
• Experience and Knowledge of Sarbanes-Oxley requirements and IT control frameworks such as CoBIT and NIST800-171/NIST800-53
• Demonstrated written and oral communication skills and ability to effectively manage communication (remotely or in person) with Peers, Managers, and Contractors and timelines...
Professional Skills
• Strong interpersonal skills to build and f...
• Considerable process management, negotiati...
• Superior analytical skills are needed to i...
Security & Compliance Resume Sample
Work Experience
• Manages the team’s participation in external auditing activities such as those for Service Organization Controls (SOC) in its industry wide review of standards in service organizations
• Manages the team’s participation in internal activities such as the audit of the appropriateness of end user ter...
Professional Skills
• Advanced oral and written communication sk...
• In depth experience and understanding of t...
• Effectively prioritizes IT Security work t...
Mortgage Compliance Resume Sample
Work Experience
• Responsible for assisting with the ongoing development and implementation of the LOB Compliance Risk team’s strategic plan to accomplish its Annual Compliance Risk objectives
• Extensive knowledge of the assigned compliance area along with the associated operations, including the related rules and ...
Professional Skills
• Experience working in a production environ...
• Pulling and Pushing: Opening and closing f...
• Performing transactional testing of requir...
Team Lead, Compliance Team Resume Sample
Work Experience
• Communicate with lines of defense regarding information related to internal audits, KRIs and control tests
• Participate in the resolution of identified risks
• Research regulations to advise on application by the business unit
• Draft and revise polici...
Professional Skills
• Excellent IT skills including Word and Excel
• Strong verbal and written communication sk...
• Experience of process mapping and developi...
Audit Compliance Resume Sample
Work Experience
• Working knowledge of Canadian Federal and Provincial Privacy legislation, the Telecommunications Act, the CRTC UTRs, CASL, and any other emergent or existing regulations that impact the CCC’s policies or processes
• Scotiabank’s Privacy Code
• Working knowledge of the policie...
Professional Skills
• Considerable skill in effective verbal and...
• Strong written and verbal communication sk...
• SAS software implementation experience or ...