IT Security Compliance Lead

BCT is actively seeking a skilled IT Security Compliance Lead for a direct hire opportunity in Dallas.

This is a onsite position. No sponsorship is offered and NOT open to C2C candidates.

SALARY RANGE: Up to $155k base, depending on candidate experience, etc.

WHAT OUR CLIENT OFFERS:

The company is an employee-focused culture with rewarding work, competitive pay, work-life balance, inclusion and diversity, and excellent benefits. Benefits offered include:

• Medical & Prescription Drug Coverage, Dental Insurance, Vision Insurance & Basic Life Insurance
• 401K/Retirement Savings Plan plus Short-Long-Term Disability
• Employee Assistance Program, Paid Training, LinkedIn Learning & Educational Assistance
• Flexible Spending Account (FSA) & Health Savings Account (HSA)
• LifeLock Identity Theft Protection
• Company Holidays & Paid Time Off

EDUCATION & EXPERIENCE:

• Minimum of 7 years of relevant experience required
• At least 5 years of experience in Security and Compliance role, involving strategy definition, process implementation, project management, vendor, and contract management
• Proficient in managing hardware/software security lifecycle, including compliance with regulations such as PCI, HIPAA, SOX, etc.
• Familiarity with ITIL Foundations preferred
• Experience with Web Proxy, IPS, IDS, VPN, Identity Management, Email/Spam filter & SIEM preferred
• Extensive knowledge & experience working with applicable data security, privacy practices & laws
• Preferred certifications: CISA (Certified Information Systems Auditor), CIA (Certified Internal Auditor), or similar

PRIMARY RESPONSIBILITIES:

• Serve as IT Security Compliance expert, aiding Senior Leadership in defining, administering, and maintaining policies for compliance management.
• Develop automated systems for compliance reporting and manage security assets.
• Lead vulnerability and patch management efforts, including prioritizing vulnerabilities and communicating with stakeholders.
• Lead compliance/audit activities for SOX, IT Control Framework, PCI, and other regulatory requirements, identifying key control points and advising on process improvements.
• Contribute to compliance program maturation through standardization of internal control components.
• Lead internal/external audit engagements, providing necessary documentation and ensuring timely responses to findings.
• Manage IT Security and Compliance project teams to uphold company standards.
• Perform risk analyses & prioritize mitigation efforts, resolving cross-functional challenges with IT controls.
• Coordinate SOX activities and deliver metrics on compliance program performance.
• Collaborate with application owners to ensure alignment with SOX requirements and identify associated controls.
• Administer, maintain, and update policies for compliance management, communicating IT governance objectives.
• Stay updated on emerging technologies & regulatory changes to enhance SOX audit program effectiveness.

Apply now! CP#8380