IT Security and Compliance Manager in Denver, Colorado at Startek

Date Posted: 7/23/2019

Job Snapshot

Job Description


Job Description
Position Summary:  Responsible for the enforcement of all IT-related corporate
policies and procedures. Leads compliance audits related to the Corporation’s Sarbanes-Oxley, PCI, SOC2 and other compliance initiatives from an IT regulatory compliance and security perspective and serves as the lead for all IT security-related activities including, periodic security reviews and review of IT security incidents. Additionally, serves as the system owner for company security and compliance software including security logging tools.
 
Essential Duties & Responsibilities:
 
  • Responsible for the enforcement of all IT-related corporate policies and procedures. Leads compliance audits related to the Corporation’s Sarbanes-Oxley, PCI, SOC2 and other IT regulatory compliance initiatives and serves as the lead for all IT security-related activities including periodic security reviews, and review of IT security incidents. Additionally, serves as the system owner for company security and compliance software including security logging tools.
    • Makes policy and compliance recommendations.
    • Performs audits to identify compliance legal risks to the organization.
    • Acts as the Lead and Point of Contact for SOX, PCI and SOC2 audits and other risk assessments as they arise.
    • Review audit evidence supplied by all IT divisions to determine compliance prior to the submission of audit evidence to external parties.
    • Monitors and assist with SOX testing as needed using internal compliance tool.
    • Creates procedural/process documentation surrounding existing IT business processes for compliance and business continuity/disaster recovery planning through analysis and interviews.
    • Assists in creation, enforcement, and reporting and review on departmental policies and procedures including infrastructure maintenance, support, and strategy.
    • Assists in planning, implementation and maintenance of STARTEK’s compliance strategies around policies and storage of compliance documentation.
    • Assists in monitoring, preparing reports, and maintenance of STARTEK’s Business Continuity Program and Test Schedule.
    • Serves as a lead for all IT security-related activities including periodic security reviews and review of IT security incidents.
    • Assist in development and presentation of materials for compliance training, security initiatives and business continuity throughout the Corporation.
    • Serves as the system owner for company security and compliance software including security logging tools.
  • May perform other related duties and responsibilities as assigned and/or required. 


Job Requirements

Job Specifications
Related Work Experience: 
Three (3) to five (5) years related experience.
  1. Education and/or formal training:
    Bachelor’s degree (BA) from a four (4) year college or university or Associate degree from a two (2) year college and relevant experience.
    IT Security specific training (Security or equivalent) and demonstrated solid skills in a broad area (Telecom, IT Operations, GSD, Reporting, IT Support Services, etc) required.
     
    Knowledge, Skills and Abilities:
    • Fluent in verbal and written English.
    Able to multi-task, have demonstrated organizational, detail orientation, prioritization skills and time management skills to ensure that work related activities are completed in an accurate and timely manner.
    Ability to work effectively in a team oriented, high demand and fast paced environment. 
    Ability to maintain high level of confidentiality and work with highly sensitive data and information.
    Solid communication skills to effectively deal with various levels of management, staff and/or outside contacts.
    Demonstrated interpersonal skills to work effectively in a team environment and maintain a professional and positive manner.
    Effective listening skills to ensure understanding of instructions and directions and effectively communicate progress and problems to co-workers and management.
    Familiarity a variety of office equipment, standard software packages and application and use of personal computers to include the Microsoft Office suite of products.
    Demonstrated analytical aptitude to identify opportunities for change, identify alternative best practice solutions and anticipate future problems and opportunities.
    Demonstrated problem identification and problem resolution skills used to effectively determine and implement alternative solutions and bring issues to a positive resolution.
    Demonstrated ability to apply assessment measurement and evaluation techniques to ensure processes, systems and applications meet business needs.
    Demonstrated ability to solve complex of problem; gleans meaning from whatever date is available; is a quick study of the new and different; adds personal wisdom and experience to come to the best conclusion and solution, given the situation; used multiple problem-solving tools and techniques.
    Knows the business and the mission-critical technical and functional skills needed to do the job; understands various types of business propositions and understand how businesses operate in general; learns new methods and technologies easily.
    Must be an intelligent, articulate, and persuasive leader who can communicate information security related concepts to a broad range of technical and non-technical staff
    Must have extensive knowledge of current and upcoming IT security technologies and threats that cover all levels of IT architecture, including those that affect business processes, data, applications, and network systems and infrastructure.
    Ability to assist in Business Process Analysis for continuous process improvement.
    Ability to define problems, collect data, establish facts and draw valid conclusions.
    Ability to lead design solution sessions.
    Ability to document, communicate and influence design solutions.
    Ability to effectively analyze process, policy and procedure, perform and communicate recommendations for improvement both in IT and to the rest of the business.
    Ability to weigh business risks and enforce appropriate IT security policies and practices while maintaining the speed of delivery that is inherent in a fast-paced company.
     “STARTEK is an Equal Opportunity Employer”

Not ready to apply?

Joining our Talent Network will enhance your job search and application process. Whether you choose to apply or just leave your information, we look forward to staying connected with you.