Sr IT Security & Compliance Analyst, Zoro Tools
Company Summary: In the past seven years, Zoro has grown from a group of 6 people working out of a 2,000 square foot building, offering fewer than 100,000 products to a group of 250+ working out of a 60,000+ square foot building, offering more than 2,000,000 unique products.
Primary Function: The Senior IT Analyst plays a key role in risk assessment, design and implementation of IT internal controls and to support the overall risk and compliance efforts for various laws and regulations including SOX, information security, PCI, and data privacy. Additionally, this position is expected to develop and maintain effective working relationships with individuals in various functions and/or business units responsible for their controls.
Duties and Responsibilities:
- Performs and leads control gap assessments for the assigned areas of operations, including financial, operational and compliance reviews, in accordance with Zoro’s policies/procedures and acceptable audit standards.
- Identifies opportunities to optimize IT & related processes and controls through improved control design, automation and standardization (best practice).
- Be creative and forward thinking in designing solutions that are best-in-class.
- Supports business unit or functional teams in the development and deployment of action plans to close identified control gaps.
- Assist the Senior Manager to establish a risk assessment framework and develop continuous risk assessment process.
- Develops collaborative working relationships with business partners.
- Ensures all project documentation is developed and kept current.
- Ensures individual assessments meet business requirements, and are completed on-time and within budget.
Qualifications:
- Bachelor's Degree in business or computer or analytical field is required. Concentration in computer science or engineering a plus.
- Certifications in IT security/engineering, fraud or compliance standards (e.g., CFA, CISA, CISM, CISSP, CCSK, CCSP) is preferred.
- Knowledge of security and operation controls for IT is required. Experience in testing design and operating effectiveness of internal controls and information security standards is preferred.
- Hands on IT administration, information security, or IT compliance experience is preferred.
- Experience in industries analogous to Zoro’s is a plus.
- Excellent English verbal and written communication skills.
- Strong organization, planning and project management skills.
- Strong business acumen & analytical skills with attention to detail.
Zoro is an Equal Opportunity Workplace and an Affirmative Action Employer.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status