Title: Cyber security Compliance Supervisor
Location: Miami, FL
Work Mode: Hybrid
Job Summary:
The Cyber Security Compliance Supervisor is responsible for overseeing and ensuring compliance with relevant cybersecurity regulations, standards, and best practices within the organization. This role requires a strong understanding of industry standards such as ISO 27001, NIST Cybersecurity Framework, and relevant legal and regulatory requirements (e.g., GDPR, CCPA, SOX).
Responsibilities:
Oversee and assist with the development and execution of PCI-DSS continuous compliance program, SOX ITGC testing, and GDPR compliance assessment plans, among others, to ensure the integrity, effectiveness, and efficiency of the compliance framework.Support the strategy to mature current Compliance practices to achieve departmental goal of shifting from “regulatory compliance” driven team to a Risk-based program and proactively work to identify potential gaps.Implement all necessary actions with relevant IT stakeholders and internal and external audit partners to achieve objectives of an effective compliance program and communicate to all key stakeholders and leadership.Collaborate closely with GRC leadership team to develop brand IT Compliance Framework to include (but not be limited to) SOX, PCI-DSS, Data Privacy (GDPR/CCPA, etc.), IMO etc. to achieve a strong compliance maturity model.Oversee IT Compliance program which includes conducting the annual validations and assessments including but not limited to SOX, PCI-DSS, Data Privacy Regulations (GDPR, CCPA, etc.), and external legal agreements.Assist with and respond to inquiries received from stakeholders across the organization pertaining to the annual validations and assessments conducted by the Security Compliance team.Qualifications:
- A Bachelor's degree in computer science, IT compliance, audit, or related area is required. An advanced degree is highly desirable particularly and excellent verbal and written communication skills. Master's degree a plus.
- Required Certifications: CISSP, CCEP, or CISA equivalent is desirable
- 5+ of experience in Information Technology and Information Security/Compliance with the focus on executing compliance framework and programs such as PCI-DSS, SOX, HIPAA, etc.
- 5+ years of Information/Cybersecurity and Compliance experience.
- 5+ years of technology project management with experience building process, controls, operating procedures, and guidelines. Previous experience performing security and compliance assessments.
- Knowledge in various compliance regulations such as PCI-DSS, SOX, HIPAA, GDPR, NIST, etc. Knowledge of information technologies components as networking, security, different OSs, DB environments.