IT compliance
Employer Active
Job Alert
You will be updated with latest job alerts via email
Job Alert
You will be updated with latest job alerts via email
Job Description
IT compliance focuses on ensuring that an organization adheres to industry regulations standards and
internal policies related to information technology and data security.
Responsibilities:
IT compliance specialist is responsible for ensuring that an organizations IT practices align
with relevant laws regulations and industry standards.
1. Regulatory Compliance: Ensure that the organization complies with relevant laws and
regulations such as GDPR HIPAA or industryspecific standards like ISO 27001.
2. Policy Development: Develop and update IT compliance policies and procedures to reflect
changing regulatory requirements and industry best practices.
3. Risk Assessment: Conduct risk assessments to identify potential compliance risks and
vulnerabilities within IT systems and processes.
4. Auditing and Monitoring: Perform regular audits and monitoring activities to assess compliance
with policies and regulations and report findings to management.
5. Training and Education: Provide training to employees on IT compliance policies security
awareness and best practices.
6. Incident Response: Develop and maintain an incident response plan to address security
breaches and compliance violations.
7. Data Privacy: Ensure that the organization handles personal and sensitive data in compliance
with data privacy regulations.
8. Vendor Management: Assess the compliance of thirdparty vendors and service providers that
have access to the organizations IT systems and data.
9. Documentation and Reporting: Maintain documentation related to IT compliance efforts and
prepare reports for management and regulatory agencies.
10. Compliance Testing: Conduct compliance testing and evaluation of IT controls and processes.
11. Security Standards: Ensure that IT security standards are in place and followed including access
control encryption and vulnerability management.
12. Remediation: Work with teams to address compliance gaps and implement corrective actions as
necessary.
Qualifications:
A bachelors degree in IT computer science.
Relevant certifications such as Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM) or Certified Information Systems Auditor (CISA)
may be preferred or required.
Strong knowledge of relevant regulations and standards.
Analytical skills for assessing compliance risks and vulnerabilities.
Communication skills to educate and train employees on compliance matters.
Attention to detail for auditing and documentation.
security,gdpr,cissp,documentation,encryption,hipaa,third-party vendors,compliance testing,data privacy,regulatory requirements,security standards,incident response,vulnerability management,risk assessments,data security,iso 27001,compliance violations,data privacy regulations,it compliance policies,industry best practices,incident response plan,assessing compliance risks,it compliance policies and procedures,certified information systems security professional,certified information systems auditor (cisa),certified information security manager (cism),access to the organization's it systems
Employment Type
Full Time
