Audit & Compliance Specialist in Cary, NC with Greene Resources

Date Posted: 6/26/2019

Job Snapshot

Job Description


Job Number: 33783


Audit & Compliance Specialist


Job Description:

Our client, located in Cary, NC, is seeking a skilled Audit & Compliance Specialist to add to their team! In this role you will help ensure that staff working on our client's Solutions OnDemand projects, operate within the policies and procedures, as well as applicable company, state, federal, and international laws. A secondary focus is to operate in a consulting role, auditing and facilitating remediation of continuous improvement efforts across the business. The ideal candidate will have previous experience in pharma and/or government compliance This is a full time, contract opportunity with an exciting company!


Responsibilities:


  • Plan and lead internal inspections, audits and benchmarking of security policies against regulations and standards (for ex: ISO 27001, HIPAA, IRS 1075, NIST 800-53, FedRAMP).

  • Advise and assist with annual IT security risk assessment activities and required remediation based on chosen standard(s) across applicable teams and divisions.

  • Conduct risk assessments to determine risks to be included in the annual audit plan.

  • Advise on compliance, audit and/or security requirements within the government market.

  • Assist with maintaining a library of up to date standard audit programs and checklists.

  • Prepare or customize audit procedures to align with ISACA and other professional organization audit standards.

  • Participate in security investigations and compliance reviews, as required by customer requirements or internal or external audits.

  • Operate as a consultant, researching and recommending changes to enhance or streamline quality and information security procedures, including internal and external auditing.

  • Review hosting, security, and audit contract terms and ensure compliance to current policies and processes.

  • Help maintain the Quality Management System, including hosting IT and security policy and process development and updates, while ensuring compliance with regulatory regulations and guidance.

  • Interface with customer auditors to discuss security or IT hosting operations-related concerns during pre and post sales activities.

  • Effectively communicate, facilitate, present, and train both technical and non-technical small and large audiences, regarding hosting and security requirements and procedures.

  • Coordinate responses to RFP and security questionnaires.

  • Must have the ability to work with little supervision, escalating issues, as appropriate.

  • Perform other duties, as assigned.


Education Requirements:


  • Bachelor's degree in Business, IT, Computer Science or related field


Desired Background/Skills:



    Qualifications:


    • Previous experience in pharma and/or government compliance

    • 3-5 years of functional experience in project management, management consulting, IT, audit/compliance or related field.

    • 2-4 years of experience in a regulated (pharmaceutical, banking, insurance, government) industry (may be concurrent with the above functional experience)

    • Understanding of best practices for information security and data privacy

    • Understanding of regulatory standards: FDA Part 11, PCI, FISMA/NIST 800-53, or IRS 1075

    • Knowledge and experience with best practices /standards: ITIL, COBIT, GAMP5, or ISO 27001

    • Knowledge of IT or quality auditor procedures and tools (not financial/accounting)

    • Use and/or implementation of a GRC tool (ex: ServiceNow, Archer, Teammate, Thompson Reuters)

    • Management consulting experience

    • Experience with ServiceNow issue management ticketing system

    • Auditor or security certification, such as CISA, IIA or CISSP, or equivalent professional certification and/or training

    • IT hosting experience

    • Travel as business requirements dictate at management discretion


    Other Information:


    • Greene Resources is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.