IT Security Associate Director - Riverwoods, United States - Wolters Kluwer

Wolters Kluwer
Wolters Kluwer
Verified Company
Riverwoods, United States

3 weeks ago

Mark Lane

Posted by:

Mark Lane

beBee recruiter
Description

We have an amazing opportunity for an IT Security Associate Director - Compliance Lead in our Global Information Security function within our Global Business Services division The IT Security Associate Director - Compliance Lead will be accountable for managing (updating, monitoring) the IT Security Services Catalog to best serve the Wolters Kluwer Business Units and their customers.

In close relationship with the Global Information Security Management team, and Business Units Management teams (mainly Product and Sales), you will identify, organize, package, and monitor IT Security Services that meet the Wolters Kluwer Global Market.


The IT Security Associate Director - Compliance Lead is accountable for the IT engagement in Customer Due Diligence; You organize the answers to Client Due Diligence globally (prospects and current customers) in the most efficient way, from Wolters Kluwer cost and sales efficiency point of views.

Based on frequent structured exchanges with Business Units, and in collaboration with your peers, the IT Security Associate Director -Compliance Lead maintains the IT

Security Services Catalog:
creates new services, and updates existing ones.

The IT Security Associate Director - Compliance Lead will ensure an updated Services Catalog, reflecting one cybersecurity framework for the entire Wolters Kluwer and its diverse ecosystems (FedRAMP, StateRAMP, ISO27xxx, SOC2, HITRUST).


In the sales cycle, the IT Security Associate Director - Compliance Lead will train & support the sales organizations, in presales, and participate in customer facing interfaces as a lead representative of GIS Security Services.


In addition, The IT Security Associate Director - Compliance Lead is accountable for other transformation and process improvement initiatives as assigned by Director of Strategic Security Services and/or Wolters Kluwer CISO.


Essential Duties and Specific Responsibilities:

Technical Compliance Responsibilities:

  • Primarily responsible for representing and leading the Global Information Security team in the sales process of the Business Units and in contracts support with the Legal Department by answering questionnaires, developing technical summaries/white papers outlining the various technology transformation efforts to highlight the maturity of WK's cybersecurity program, presenting the security posture of the BUs, and training the Sales community.
  • Responsible for maintaining the IT Security Services Catalog and "selling" it to BUs. Includes identifying and reporting gaps in services, communication, and delivery.
  • Collaborating with peers across GBS teams to align the IT Services catalog strategy with GBS goals.
  • Prioritizing projects based on risk and impact to the overall business.
  • Ensure the appropriate technical metrics are identified, measured, and reported to demonstrate the effectiveness of the IT Security Services program.

Compliance Oversight and Responsibilities:

  • Educating the Legal Department and Customers facing community on Wolters Kluwer Cybersecurity posture and maturity
  • Adapting documentation to various regulatory frameworks such as GDPR, HIPAA, PCI-DSS, etc.
  • Engaging closely with control owners associated with the Customer Facing services to prepare for potential audits and legal or regulatory requirements related to compliance.

Audit and Third-Party Assurance Management Responsibilities:

  • Supports the team in discussion with internal and external auditors to ensure that all technical controls are communicated to the auditors to ensure audits are executed smoothly.
  • Reviews audit findings and works with the C&A team to address identified gaps and vulnerabilities.
  • Provides CISO with insights into technical gaps from audit outcomes and implications.

Accurate and Timely Reporting Responsibilities:

  • Developing and presenting weekly and monthly reports to the CISO outlining achievements, challenges, and plans.
  • Analyzing trends in observations from external audits, internal assessments, and other sources of identifying issues to inform and influence remediation strategies, common trends and updating the IT Security Services catalog.
  • Ensuring timely communication of critical gaps identified from audits/assessment to management.

Leadership Responsibilities:

  • Actively participate in the development of the annual Vision and Strategy Planning.
  • Ability to lead the in developing audit/assessment plan as required for different regulatory or standard's needs.
  • Assist in mentoring team members to build the technical capabilities within C&A function's goals.
  • Lead the teams in identifying technical solutions for audit gaps and drive the tracking and managing to the successful resolution of the gaps.
  • Provide leadership in evaluating compliance aspects of projects through of reporting of appropriate technical KPIs and other compliance metrics.

Job Qualifications:

  • Bachelor's or master's degree in information system management, Compu
More jobs from Wolters Kluwer
See all jobs of Wolters Kluwer