Information Security compliance analystNowcom Global Services, LLC

WORK FROM HOME Opportunities Comes with company provided machine. With 60K SIGNING BONUS Company Description Nowcom is a leading provider of automotive dealer management solutions (DMS), specifically catering to the independent automobile dealer's needs. DealerCenter is Nowcom's all in one dealer management software solution that gives the dealer total control over their sales, inventory, insurance offerings, and financing through a web-based platform. As an authorized credit reseller, Nowcom provides dealerships access to all three major credit bureaus. DealerCenter.com is utilized by over 19,000 dealerships across the United States. Additionally, as a part of the Hankey Group of Companies, Nowcom provides infrastructure support, custom software development, and call center services to its seven sister companies. Along with the other companies in the organization, Nowcom has experienced 20% growth YoY over the last decade. The Hankey Group employs over 3000 people and has assets exceeding $15.9 billion (USD). Nowcom has 3 offices in three countries across the globe, India, Philippines, and United States. Information Security Compliance Analyst We are seeking an Information Security Compliance Analyst to become a key member of our international information security group. This job requires the ability to work as part of a team that is responsible for the information security program across multiple affiliated companies, primarily in the United States, with subsidiaries outside USA. Reporting to information security manager, the Information Security Compliance Analyst (ISCA) oversees all affiliated companies' compliance mandates, Information Security policies, plans and procedures. The ISCA will review, modify, and update existing policies, plans and procedure to meet and comply with Federal, State, industry standards and relevant contractual cyber security requirements. The ideal candidate is someone that has a passion for dissecting complex Information Security challenges, analyzing varieties of requirements, and designing pragmatic policies to protect our organization's information systems and data. Essential Duties and Responsibilities: Conduct monthly, quarterly, semi-annual, and annual audits/assessment to satisfy PCI DSS, GLBA, FCRA and ISO270001. Research and perform gap analysis over existing and new cyber security laws, industry compliance regulations and policies to correlate the result with our security doctrine coverage. Evaluate compliance with regulatory requirements and business requirements including, but not limited to, GLBA, FCRA, PCI-DSS, EI3PA/ISO27k. Perform an impact analysis and enterprise risk assessment over covered requirements from operational and business feasibility. Develop, implement, and communicate security policies, procedures, standards, best practices, guidance, and controls. Manage technical, operational, and administrative projects across the Enterprise Educate and guide employees on industry compliance requirements. Actively participate in the development of the information security and security awareness training program. Facilitate control testing in form of vulnerability assessment, risk assessments, penetration, and social engineering testing. Work with different IT divisions on remediation efforts to correct identified weaknesses. Understand and implement incident handling procedures. Position Requirements: Bachelor's Degree from a four-year college or university with compliance management or equivalent. Excellent in written and verbal communication skills. Excellent in writing and reading English. Detail oriented and ability to focus on granular level compliance and security issues. Ability to work well on a collaborative team and influence others without direct authority. Two to four years' compliance security analyst experience. Desired Qualifications: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISM), Certified Information Systems Manager (CISA), or PCI Internal Security Assessor (ISA) rating is desired. Master's Degree in law, compliance, or equivalent degree. Experience in Financial Institution operations and environment. Two to three years' project management experience is highly desired; PM certification a plus. Salary commensurate with experience and skills COVID-19 Precaution(s): Remote interview process THE PERKS THAT WE OFFER: Full-Time Positions Competitive Salary Offer (varies on the skillset and tenure in the industry) Non-Taxable Allowance Daily FREE LUNCH and Unlimited Rice HMO Worth 200k w/ Free Dependents, Insurance and Retirement 20 Paid Time Off 2K Each Medicine Reimbursement employee and dependents 5k Yearly Prescription Glasses Availment 13th Month Pay Yearly Appraisal(Depending on overall performance) Stability Steep Learning Curve Career Growth Friendly and harmonious working environment Team lunches, Free movie and Nightout's every now and then to promote camaraderie in the team Extravagant YearEnd Party with sumptuous dinner and a lot of raffle items Gift Certificates for Christmas Summer Outing for you and your family Monthly Sports Activity, be it basketball, volleyball or badminton Take your career to the next level and be part of an AWESOME TEAM :-)
Monster

Metro Manila
Permanent
Full-time