It Risk And Compliance Manager Jobs

1+ years of experience in Information Security or Compliance Management

Support requests may include but are not limited to - tool license management and allocation, hardware troubleshooting, and software troubleshooting

Experience with ISO certification standards, including but not limited to ISO 27001, ISO 20000, and ISO 9001

Experience with CMMC cybersecurity certification processes and procedures

Your well-being is important to us, so we offer highly competitive benefits for medical, dental, and vision

Support other Nava teams with certification efforts, including but not limited to ISO 9001, CMMI Level 2, and others, as needed.

Bachelor's degree in Risk Management, Finance, Business Administration, or related field; Master's degree preferred

Develop, implement, and manage an all-encompassing insurance program that aligns with the company's risk appetite and regulatory requirements

Analyze financial statements, credit reports, and market data to make informed risk assessments and provide recommendations to senior management

Professional certifications such as Certified Risk Manager (CRM), Certified Compliance & Ethics Professional (CCEP), or equivalent, are highly desirable

Proficiency in risk management software, data analysis tools, and Microsoft Office Suite

Collaborate with internal stakeholders to identify potential risks and liabilities and recommend appropriate insurance coverage

Review and communicate engagement results, findings and recommendations to account partner, client management and key stakeholders.

Strong report writing and presentation skills, an analytical mind, and problem-solving abilities

Strong Understanding of GRC processes (Risk Assessment, Controls, Regulatory Change Management and policy and procedures management.

Preparing business requirements document, process flows, process, and control documentation in form of Risk Control Matrices (RCM), SOPs, narratives, etc

Graduate degree in Accounting & Finance required

Experience on working on different GRC tools.

Knowledge of U.S. Federal Government security compliance, risk management processes and requirements, including NIST RMF and NIST 800-53 Rev 5 controls

Strong stakeholder and relationship management skills

Knowledge of local legal and regulatory security requirements including HIPAA, FedRAMP, and GDPR/privacy

Have a working knowledge of the NIST CSF and RMF frameworks

Bachelor's degree with a minimum of 8 years of experience

Experience managing Agile projects with a focus on duties related to Product Owner

Exceptional knowledge of federal IT regulatory compliance requirements (e.g., NIST, FISCAM, FFMIA, etc.)

Assurit is currently seeking multiple experienced IT Compliance Manager to support one of our projects!

Executive presence, characterized by an ability to distill complex IT regulatory concepts into easily digestible requirements for Air Force clients.

Sharp attention to detail with a keen eye for reviewing documentation and correspondence for quality, accuracy, and completeness.

Certified Information Systems Auditor (CISA)

Understanding of US Air Force and/or other US military services (i.e., ranks, protocols, authorities)

Utilize ServiceNow to manage TS audits and policies

Education: Bachelor's Degree in Computer Science, Information Systems, Business Administration, Mathematics or a related field

Collaborate with the CCD Auditors Office throughout audit engagements

Assist in the collection/creation of audit deliverables

Work with TS stakeholders and advise on implementation of internal controls and safeguards in response to audit findings

Utilize ServiceNow to approve third party file share permission requests

Implements and manages governance technology platforms including Archer Integrated Risk Management Platform and ACES Quality Management Software.

Expectation of both remote work along with in office days.

Oversees system integration and enhancement projects, including requirements gathering, adequate scoping, resource allocation, roadmap development, and timely project completion.

Manage technology upgrades, maintenance, and issue resolution as needed in close collaboration with IT team and GRC third-party provider.

Provides input and actively implements strategic plan for the team, manages and maintains team procedures, development documentation, and record retention.

3+ years RSA Archer experience in building Advanced Workflow, Access Control, UI design, Reporting, Dashboards, iViews and DDEs

Lead the supplier risk management process to identify and mitigate the risk of third-party relationships.

Compliance for regulatory requirements such as SOC2, FedRAMP, NIST 800-171, CMMC, and new regulatory initiatives applicable to the business.

Documentation review, drafting of policy, procedures and standards, certification and accreditation documents.

Manage various projects, including effective project tracking, issue handling, and follow up.

You're collaborative, building relationships, humbly offering support and openly welcoming approaches.

Location: Fully Remote, with the opportunity to work from anywhere in the United States.

Promote the awareness of risk management, internal control, and compliance via training, promotion, and eLearning

Oversee the stipulation and management of TSMC AZ’s policy, procedure, and control instruction

GRC (Governance, Risk management, and Control/Compliance) Manager

Perform testing to substantiate results.

Facilitate the risk assessment and annual Control Self-Assessment (CSA) for TSMC AZ

Represents the Compliance team on projects and ensures compliance when changes are made to current systems

Proven experience in a compliance and risk management leadership role, preferably within the healthcare sector.

Excellent leadership and team management skills.

Implement appropriate training programs for compliance and risk management.

Provide reports and key risk indicator updates to the CISO and executive management team.

Report back to business functions on current risk and compliance performance; participate in management and board meetings.

Oversee and manage the development and implementation of GRC standards and processes.

Consistent record to understand regulatory concepts and convert them into relevant, practical, local business requirements.

Excellent advisory, communication and influencing skills.

What if I don’t meet every requirement?

Understanding and application of FCPA, OFAC/Sanctions regulations, Privacy based principles, UDAAP and TCPA.

Ability to work effectively in a matrix structure that spans multiple functions, markets and legal entities.

Ability to get results, solutions oriented, through a strong sense of controls in changing and ambiguous situations.

Project management and organizational skills with demonstrated ability to complete assignments timely and effectively.

Knowledge and experience with regulatory frameworks and compliance standards such as SOX, SSAE 18 (SOC), COBIT, NIST, ISO, HIPAA, etc.

Experience with performing technical risk assessments, analyzing risk, and providing recommendations on risk mitigation strategies.

Experience with creating and maintaining high quality documentation related to IT processes including flow charts and data flow diagrams preferred.

Enhance centralized compliance repository including maintaining process and controls documentation, workflows, diagrams, and training materials/manuals related to IT processes.

Assist in designing continuous controls monitoring program utilizing GRC solution, dashboards, analytics, automation, and other supporting tools.

· Project management skills and presentation skills - Excel, PowerPoint

· Operational risk compliance – Process controls, risk assessments, report out and management.

· Should have experience and understanding in US Mortgage regulations (regulations A, B, Z & U…)

· Lead team of Risk & Compliance managers to achieve risk activities agreed for vertical.

Qualifications we seek in you!

Welcome to the relentless pursuit of better.

Respond to incoming requests for vendor assessment and support the day-to-day operations related to the Vendor Risk Management Program.

Manage VRM lifecycle within the vendor risk management platform.

Ensure that the firm’s third-party vendors are cyber secure and protect data in accordance with regulatory and legislative requirements.

Work with vendors to remediate BitSight or Security Scorecard vulnerabilities.

Ensure that all policies and standards are regularly reviewed and updated to be in line with regulatory and control requirements.

Design and implement an effective exception process to facilitate and manage requests for non-compliance with policies and standards.

3+ years’ experience in vendor risk management, IT risk management, and/or data privacy role.

Experience with risk management as it relates to Cybersecurity.

Experience using GRC, third-party risk management, and identity access & governance platforms.

Assist in conducting management audits, producing reports with recommendations for remediation and improvement.

Support key operations of due diligence, on-going monitoring, and risk exception/waiver management.

Support the delivery of relevant and actionable reporting/presentations to stakeholders and executive management.

Consistent record to understand regulatory concepts and convert them into relevant, practical, local business requirements.

Excellent advisory, communication and influencing skills.

The successful candidate will be a proven leader in area of compliance, with the following qualifications:

Understanding and application of FCPA, OFAC/Sanctions regulations, Privacy based principles, UDAAP and TCPA.

Ability to work effectively in a matrix structure that spans multiple functions, markets and legal entities.

Ability to get results, solutions oriented, through a strong sense of controls in changing and ambiguous situations.

Experience in producing dashboards and management reports.

Develop dashboards, management reports, and provide updates to senior leadership.

5 years or more of IT policies, SOX compliance, access control reviews, IT audits, and change management implementation required.

Full-Time Manager, IT SOX Compliance and Change Management

Manage weekly CAB review meetings.

10 years or more of IT experience, preferably in IT operations required.

Collaborate with external compliance advisors to implement risk management policies and comply with regulatory requirements.

At least 3 years of experience in risk management and compliance, preferably at a fintech.

years of experience in risk management and compliance, preferably at a fintech.

Monitor and evaluate the effectiveness of compliance and risk management controls and processes.

In-depth knowledge of regulatory requirements and industry standards, including BSA/AML, Reg E, UDAAP, and fraud prevention.

Manage KYC / AML verification process for new customers, including implementation of manual reviews.

5+ years of risk management, or relevant risk management working experience.

5+ years of audit, compliance, and enterprise risk management experience.

Proven leadership, problem solving, project management skills, and strong attention to detail.

Guiding senior leadership to balance risk management concerns with pragmatic risk solutions

Bachelor's degree in Business Administration, Economics, Finance, Engineering or related field.

Demonstrated experience as a leader who can prioritize well, communicate clearly in both written and verbal forms.