This site uses cookies. To find out more, see our Cookies Policy

Compliance Specialist in Durham, NC with Greene Resources

Date Posted: 8/16/2018

Job Snapshot

Job Description


Job Number: 30747


Compliance Specialist


Job Description:

Our client, located in Durham, NC, is seeking a skilled Compliance Specialist to add to their team! The Compliance Specialist is responsible for ensuring that our client's product and service offerings conform to relevant internal and external compliance requirements. In this position you will coordinate with the compliance and contracts team to revise and complete customer security and privacy questionnaires as well as data privacy, data security and data protection agreements, coordinate with external council and other stakeholders. This is a full time, direct hire opportunity that offers competitive benefits and PTO.


Responsibilities:


  • Revision and completion of customer security and privacy questionnaires, data privacy, data security and data protection agreements.

  • Contract revision, review and negotiation, including service agreements, IP and data licensing agreements, NDAs, vendor agreements, etc.

  • Vendor management (vendor due diligence).

  • Data flows, data mapping and data protection.

  • Focus on privacy and data protection laws.

  • Participate in the evaluation, development and maintenance of policies, procedures and training as they pertain to regulatory and customer compliance requirements.

  • Manage customer and other third party audits, including the gathering of artifacts across multiple departments and scheduling internal and external prep meetings with subject matter experts.

  • When acting as a lead function during audits, will track all post-audit follow-up deliverables through to completion.

  • Confer with business stakeholders to discuss issues and make recommendations pertaining to their compliance needs.

  • Prepare first drafts of amendments to basic agreements and new or revised statements of work under existing agreements.

  • Assist internal clients with use of standard form agreements.

  • Coordinate all aspects of contract preparation and management.


Education Requirements:


  • Bachelor's degree or equivalent.


Desired Background/Skills:


  • Knowledge in the following areas would also be nice to have: ISO 27001, ISO 9001, GDPR, ITAR, EAR and/or FFIEC, applicable data protection laws.

  • Familiarity with technical assessments and audit methodologies for technical systems (network, operating systems, application security) as well as IT auditing processes.


Qualifications:


  • 5-7 years of experience.

  • A strong candidate will possess a background in and very good knowledge of Information Security and Technology compliance standards and frameworks, including SOC 2 Type II, ISO 27001, HIPAA, FISMA, FedRAMP and PCI-DSS.

  • Strong communication; written and verbal skills.

  • Strong project management skills.

  • Familiarity with cloud computing services/deployment architecture.

  • This highly collaborative role requires strong listening skills, as you will be actively involved in evaluating process gaps and the development of new processes.

  • Ability to work autonomously while managing both short and long term project goals.

  • Strong organizational skills and steadfast attention to detail to manage fast paced and demanding requests from internal and external stakeholders.

  • High resourcefulness and ability to team with other groups to influence the collection of information required to obtain compliance.


Other Information: