Security Compliance Program Manager
2 weeks ago
Development of strategic roadmaps for SOC2 compliance including areas of Risk Management, Information Security, Data Governance, Business Continuity, and Disaster Recovery.
Determine the project approach, resource requirements, team roles and responsibilities, and schedule.
Develop and review estimates and assumptions for project schedule, effort, and cost using established estimating models, best practices, and past experience.
Create and manage project, risk mitigation, and communication plans.
Create project charter and scope statements, weekly status reports, risk and issues log and other project deliverables.
Execute day-to-day activities required for the development and tracking of a SOCII and Information Security initiatives as well as including the communication and management of policies, controls, and practices.
Provide project management and program leadership, including process improvement, business process and data analysis, process documentation and support for project life cycle for supporting programs and tools.
Coordinate and project manage organization wide risk assessments and control self-assessments.
Provide guidance on project risk assessment for major cross functional projects.
Coordinate activities as part of SOC2, PCI-DSS, ISO27001, HIPAA, GDPR compliance programs.
Issues and remediation tracking for compliance with the above frameworks.
Assist in rolling out third-party security standards and risk assessment methodologies around suppliers, vendors, service providers, and members.
Coordinate conformance with Information Security policies.