Compliance Analyst in Mississauga, ON

Description:

The opportunity 

• As a member of the Compliance Product Team, you are given this opportunity in a team with a strong focus on collaboration and teamwork to support the Digital Products domain with state of the art and innovative security and privacy concepts.
• You will oversee or consult on technical architecture implementation activities, particularly for new and/or shared solutions.
• You coordinate compliance activities at a global/regional level.
• You help others (like engineers, cross functional team members) interpret laws and regulations (like GDPR, HIPAA, HITRUST and other regulations) correctly and ensure consistent adherence.

In addition, you will:

• Help with audit related work internally and externally - check controls compliance, collect evidence and coordinate audit work (like ISO 27001, 27017 and 27018)
• Coordinate routine activities like Pen Testing, Disaster Recovery and tasks stemming from them, recording of results in tools like Jira, tracking any findings and remediation work,
• Define and implement security and privacy risk management governance and insights,
• Assist in drafting new or updated compliance policies and procedures, including specifying actual or potential implications to existing business operations and practices,
• Help prepare and deliver communication and training materials/sessions to educate others on the evolving compliance landscape and potential new or updated policies and related changes,
• Leverage your working knowledge of controls for cloud security, mobile application security, data privacy laws, AWS architecture and services,
• Put in practice your project management skills and ability to manage multiple projects simultaneously to meet objectives and key deadlines
• Conduct Risk assessments by analyzing the current risks and identifying potential risks that are affecting the business and product groups

Who you are

• You have a University degree in computer science, engineering, law, business or other related fields, or equivalent experience.
• You bring experience working in a multicultural environment and proven cultural awareness.
• You are fluent in English on a business level with excellent verbal and written skills; other languages welcome, but not required.
• You have a minimum of 5+ years related work experience in Information Security, Privacy & Risk Management, Audit.

You bring solid experience in:

• Conducting or being the subject of security and/or privacy audits
• Working with cloud environments required
• Expert planner with business process definition experience and a strong IT aptitude
• System hardening, analysis and vulnerability management
• Understanding of applicable and accepted audit and risk frameworks (such as COBIT, NIST, and ISO), standards (ISO 27000 family, HITRUST) and government guidelines and laws (HIPAA, GDPR)
• Clinical workflow solutions or in a clinical environment a plus
• Knowledge of AWS and Cloud Security preferred
• Relevant certifications like CISA, CISM, CRISC, CISSP preferred

You bring the following competencies:

• Strong business acumen; sensitive to business needs; view change as an opportunity; eager to work in a fast paced environment.
• Best in class attitude; challenge status constructively and contribute to improvements; results oriented; ability to influence; solution oriented mindset.
• Strong organizational skills and ability to prioritize and manage multiple projects simultaneously if needed
• Effective at engaging with teams in various functions and across different levels
• Pro-active and confident individual who is committed to driving change.
• Ability to communicate complex and highly technical information clearly and concisely.
• Commitment to working as a team player across Business Areas and Divisions.
• Excellent interpersonal skills with high cross-cultural sensitivity.
• Healthcare software experience preferred

Compliance Tech

• With the great knowledge in GRC tooling preferably GRC hands on experience and ability to identify and automate Quality Privacy Risk and Compliance tasks throughout multiple internal and external stakeholders integrated into our services to help in upcoming FedRAMP, C5 or similar attestations and authorizations.
• Understands Quality, Risk, Privacy and Compliance from a technical perspective and is able to articulate and communicate the same in a written format with Fluency in English.
• Ability to understand what the stakeholders or consumers do not and bring it to surface. Knowledge to write clear Policy and Standard Operating Procedures.

Rangam Consultants is a minority, women-owned, disability workforce solutions global organization. We specialize in attracting and retaining talent globally for rewarding careers in IT, Engineering, Scientific, Clinical, Healthcare, Administrative, Finance, Business Management, and many more, while integrating veterans and individuals with disabilities into the workforce. Indeed, we connect career aspirants to relevant job opportunities, whether in the USA, UK, India, or Ireland. Additionally, we offer Flexible Work Arrangement jobs and contract positions across different verticals and industries.
Rangam strives to put job seekers first, providing them with free access to search for jobs, post resumes, and research companies. Every day, we connect millions of people to new opportunities.