Manager IT Compliance

24 Nov 2022
20 Dec 2022
Employer Sector
Technology, ICT & Telecoms
Contract Type
Full Time
Job Description: Mastech Digital provides digital and mainstream technology staff as well as Digital Transformation Services for all American Corporations. We are currently seeking a Manager IT Compliance for our client in the Research domain. We value our professionals, providing comprehensive benefits and the opportunity for growth. This is a Permanent position, and the client is looking for someone to start immediately. Duration: Full Time Location: Chicago, IL (Hybrid) Role: Manager IT Compliance Primary Skills: IT Compliance Role Description: The Manager IT Compliance must have at least 8+ years of experience. Responsibilities: ????? Provide supervision and leadership for the IT compliance team responsible for specifying, documenting, and maintaining IT security policies and controls to ensure the protection of electronic assets and compliance with security requirements of clients (principally Government) and corporate standards for data and systems integrity ????? Manage security compliance engagement activities and support existing compliance control ????? Develop and implement tools and processes to measure and track security control metrics ????? Provide executive level reporting on the current status and expected changes in the compliance requirements ????? Provide guidance to IT functional teams on security compliance as it pertains to system development, documentation, testing, monitoring and reporting ????? Manage Risk Management program. ????? Conduct risk assessments and security impact analysis of information systems; ????? Participate in project meetings, provide all required documentation, identify deficiencies and create remediation plans ????? Develop policies, procedures, and automated processes to ensure the company????? s IT environment continues to meet all applicable standards and recommendations ????? Maintain all NIST 800-53 Standard Operating Procedure control documentation ????? Manage daily activities of compliance team members, develop short term and long term compliance strategies Required Skills: ????? BS in MIS, Computer Science, IT auditing or other comparable degree; Master????? s Degree preferred ????? At least 8 years of experience in IT risk assessment, or compliance in a Government contract environment. ????? Knowledge of compliance regulations and control frameworks such as NIST 800-53, FISMA, HIPAA and Fedramp ????? At least 5 years of management supervision experience. ????? Set team priorities, coordinate team tasks, mentor staff and handle any staff escalations. ????? Create and develop a budget ????? Current security compliance certification such as Certified Information Systems Auditor (CISA) or Certified Internal Auditor certification (CIA) ????? Experience with creating and maintaining IT audit control processes; experience in Government security standards and regulations. ????? Practical experience in participating in both internal and external compliance audits. ????? Experience in managing the NIST 800-53 Authorization to Operate (ATO) approval process required. ????? Experience transitioning to NIST 800-53 rev 5 preferred ????? Project Management experience managing team projects and cross functional projects ????? In-depth understanding of information security compliance practices at all layers of the IT infrastructure: network, servers, databases, applications including cloud systems and third party compliance ????? Experience using Governance Risk and Compliance (GRC) tools to manage, test and document the performance of IT controls ????? Experience auditing and reviewing identity and access privileges of employees and contractors including performing Identity and Access management Attestation reports across the organization ????? Previous experience in the advanced use of information security assessment techniques (e.g., vulnerability scanning, penetration testing, verification of application security, etc.) ????? Knowledgeable about data privacy compliance ????? Familiarity with managing a Security Awareness training program ????? Managerial experience managing technical employees ????? Consulting Experience ????? FEDERAL experience is a MUST ????? STEM Degree is a MUST - STEM degrees are college programs in science, technology, engineering and mathematics. Education: Master's degree/Bachelor????? s degree in Computer Science, Electrical/Electronic Engineering, Information Technology or another related field or Equivalent Experience: Minimum 8+ years of experience Relocation: This position will not cover relocation expenses Travel: No Local Preferred: Yes Note: Must be able to work on a W2 basis (No C2C) Recruiter Name: Aditya Bopche Recruiter Phone: Equal Employment Opportunity Minimum Education Required: Bachelor Years of Experience Required: More than 5 years Expected Travel Time: None