- Develop and support internal audits of internal processes and best practices to ensure compliance with security standards and regulations.
- Develop and oversee information security risk and compliance strategies that align with business goals and protect the confidentiality, integrity and availability of information assets.
- Works closely with operations, engineering, and legal teams to assess contractually proposed terms and conditions for partners, customers, and vendors, aligning with appropriate risk profile and providing feedback on changes needed.
- In cooperation with the organizational PMO, prepare and manage project plans, including work breakdown, obtaining resources, collaboratively resolving escalated issues, and monitoring schedules to achieve timely deliverables, on-budget.
- Lead members within the Auditing and Compliance team under the Director of Trust in assessing risk, developing appropriate controls and advising on creation of action plans to address gaps.
- Work with 3rd party auditors to assess information security and compensating controls while developing compliance strategies for continuous auditing adherence standards and programs.
- Recommend, implement, and maintain technical and procedural controls to provide regulatory compliance in the most reasonable and cost-effective manner.
- Manage the work of the IT Security Auditing and Compliance team responsible for monitoring and implementing Information Security and Risk and Compliance Management frameworks policies, standards and best practices.
- Establish auditing procedures to adhere and sustain regulatory compliance standards.
- Draft and publish Auditing and Compliance policies, to include continuous compliance testing internally with approved and scheduled external auditing.
- Support and coordinate internal and external audits for the areas of Information Security Compliance and Risk Management.
- Maintain Information Security Risk Management & Compliance data repositories.
- Work with Marketing to design and produce Information Security and Trust Office materials.
- Oversee the Security Vendor Management Program to ensure 3rd party relationships are managed according to best practice.
- Maintain the highest level of personal certification, integrity and objectivity, following the company Code of Ethics and Nice CXone policies and procedures at all times.
- Bachelor's degree in Business Information Systems, Computer Science, Information Systems Security or related field or equivalent work experience required.
- 6+ years of audit experience.
- 3+ years in or with information security or security principles.
- Experience conducting PCI DSS, SOC 2, ISO 27000, and/or FedRAMP audits across enterprise organizations.
- Demonstrate strong knowledge in IT controls, risk assessments, and the design and testing of security measures.
- Excellent skills in risk assessment processes, policy development, proposals, work statements, product evaluations, and delivery of technology.
- Experience engaging executive-level leadership and stakeholders to establish strategic plans for programs and projects.
- Strong writing and verbal aptitude.
- Good organization and project management skills
- Advanced computer skills in desktop applications.
- Demonstrates a strong ability to work with, define, and negotiate goals between teams and groups that may not be in the same department.
- Knowledge of internal control concepts and related test of control techniques. Includes security and operation controls, as well as knowledge of a major recognized control framework.
- The attributes of a qualified candidate are a rational skepticism, a sense of risk appreciation, technical awareness, informed judgment and a strong operational understanding.
- Certification in security compliance or related field (one or more preferred):
- Certified Information Systems Auditor (CISA),
- Certified in Risk and Information Systems Control (CRISC),
- Certified Internal Auditor (CIA),
- Certified Information Security Manager (CISM),
- Certified Information Systems Security Professional (CISSP),
- NIST Cybersecurity Framework Certification.
- Experience managing IT internal audit and compliance teams within organizations.
- Strong understanding of database and software technologies.
- Strong understanding of SaaS and Contact Center/Telecommunication services.
- Experience working with off-shore staff
-
Information Security Engineer
4 days ago
Smith Johnson Group Sandy, United StatesJob Description Summary · Our client is looking for an Information Security Engineer to join the Information Security Team. The Information Security Team reports to the Chief Technology Officer and is responsible for the Information security program. This technical operations rol ...
-
Information Security Engineer
4 days ago
Smith Johnson Group Sandy, United StatesJob Description Summary · Our client is looking for an Information Security Engineer to join the Information Security Team. The Information Security Team reports to the Chief Technology Officer and is responsible for the Information security program. This technical operations ro ...
-
Senior Information Security Engineer
5 days ago
NICE Systems, Inc. Sandy, United StatesJob Title: Senior Information Security Engineer · Overview: · We are seeking a highly skilled and experienced Senior Information Security Engineer to join our team. The ideal candidate will be responsible for designing, implementing, and maintaining security measures to protect ...
-
Restaurant Supervisor
1 week ago
Snowbird Ski and Summer Resort Snowbird Ski And Summer Resort, United StatesWhat You'll Do · As a Restaurant Supervisor and under the direction of the Restaurant Manager, you'll be responsible for managing daily restaurant operation, including team member development and performance, inventory, ordering of food and supplies, optimize profits and ensure t ...
-
Specimen Collector
2 weeks ago
Millennium Health Sandy, United StatesPart Time Male Specimen Collector · Location: Sandy, Utah · Schedule: Part Time. Mondays 8:00am - 6:30pm, Fridays 8:00am - 4:30pm · Seeking: Male candidates required for observed collections of male/female patients. · Help make a positive impact in your community · Millennium Hea ...
-
Registered Nurse Labor
3 weeks ago
Intermountain Healthcare Sandy, UT, US, United StatesJob Description: · The Registered Nurse (RN) is a professional caregiver who assumes responsibility and accountability for assessing, planning, implementing and evaluating care of patients. The staff RN utilizes the nursing process by use of technology, therapeutic intervention, ...
-
Radiology Technologist
3 weeks ago
Intermountain Healthcare Sandy, United StatesJob Description: · The Registered Radiology Technologist performs medical imaging examinations under the direction of a physician. · Job Details: · Scheduled Weekly Hours: PRN · Benefit Eligible: No · Why Join Our Team at Intermountain Healthcare? · Work Flexibility for your Scho ...
-
Unlicensed Electrician
3 weeks ago
Helix Electric Sandy, United StatesHelix Electric has need for a dynamic Electrician. The successful electrician will be part of a production driven team, performing electrical installations and troubleshooting. · DETAILED JOB DESCRIPTION: · Helix Electric, Inc. is one of the most successful open-shop electrical ...
-
Apprentice
2 weeks ago
Helix Electric Sandy, United StatesTo better support complex projects, Helix Electric has need for a dynamic Apprentice Electrician. The successful apprentice electrician will be part of a production driven team, performing electrical installations and troubleshooting. · DETAILED JOB DESCRIPTION: · Helix Electric ...
-
Unlicensed Electrician
2 weeks ago
Helix Electric Sandy, United StatesHelix Electric has need for a dynamic Electrician. The successful electrician will be part of a production driven team, performing electrical installations and troubleshooting. · DETAILED JOB DESCRIPTION: · Helix Electric, Inc. is one of the most successful open-shop electrical ...
-
Virtual Client Solutions Workforce Management
2 weeks ago
Morgan Stanley Sandy, UT, United States Full timeMorgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm's employees serve clients worldwide including corporations, governments and individuals from more th ...
-
Lead Cloud Database Engineer
3 weeks ago
NICE Systems, Inc. Sandy, United StatesSo, what's the role all about? · The Lead Cloud Database Engineer will ensure SQL Server database performance and availability in a 24x7 environment. · How will you make an impact? · Install, configure, upgrade, monitor, maintain, and manage multiple SQL Server databases. · Perfo ...
-
IT Help Desk Technician Tier 2
3 weeks ago
Cementation USA Sandy, United States· Job Title: · IT Help Desk Administrator Tier 2 · Department: · Business Technology · Reports to: · IT Director Cementation Americas · GENERAL PURPOSE OF THIS JOB · Reporting to the IT Director Cementation Americas, the IT Help Desk Admin-Tier 2 monitors and actions help desk t ...
-
Plant Manager
2 weeks ago
Spectrum Plastics Group, A DuPont Business Sandy, United StatesPrimary Objective · To oversee, provide direct leadership and continual evaluation of the company's operating departments, including the maintenance, quality, engineering, extrusion, and fabrication manufacturing with the goal to improve throughput, increase efficiency, and ret ...
-
Sr. DevOps Engineer
5 days ago
NICE Sandy, United StatesAt NICE, we don't limit our challenges. We challenge our limits. Constantly. We're relentless. We're ambitious. And we make an impact. Our NICErs bring their A game and spend each day turning it into an A+. And if you're like us, we can offer you the kind of challenge that will l ...
-
SITEC- Systems Administrator- Draper, Utah
2 weeks ago
Peraton Sandy, United StatesResponsibilities: · Peraton requires Systems Administrators to support the Special Operation Command Information Technology Enterprise Contract (SITEC) 3. Positions are located at the SOCOM Headquarters at MacDill, AFB FL, and at the TSOC and Component locations in the United St ...
-
Cleaner
2 weeks ago
ABM Industries Sandy, United StatesJob Description · The Cleaner position provides the cleaning and upkeep of an assigned area. · Essential FunctionsCleans and maintains buildings/facilities. Performs heavy cleaning duties, such as cleaning floors, shampooing rugs, washing walls and glass, and removing rubbish. ...
-
Cleaner
2 weeks ago
ABM Industries Sandy, United States**Overview** · The Cleaner position provides the cleaning and upkeep of an assigned area. · **Essential Functions** · + Cleans and maintains buildings/facilities. Performs heavy cleaning duties, such as cleaning floors, shampooing rugs, washing walls and glass, and removing ru ...
-
Patient Service Representative
3 weeks ago
Intermountain Healthcare Sandy, United StatesJob Description: · You will represent Intermountain and serve as the point of contact for patients entering Intermountain facilities; we look for individuals who embody Intermountain's values and focus on establishing collaborative relationships with patients and fellow caregive ...
-
Reservations Sales Manager
2 weeks ago
Sandyblue Sandy, United StatesReservations Sales Manager · ** Reservations Sales Manager** · **Competitive package, plus benefits, dependant on experience** · Great role for a 5* Reservations Sales Manager to join our, exciting team in the Algarves most exclusive area. · As a key figure in the reservation ...
Manager, Information Security CX - Sandy, United States - NICE
Description
At NICE, we don't limit our challenges. We challenge our limits. Constantly. We're relentless. We're ambitious. And we make an impact. Our NICErs bring their A game and spend each day turning it into an A+. And if you're like us, we can offer you the kind of challenge that will light a fire within you.
Manager IT Security Compliance
Location: Salt Lake City, UT
The Manager IT Security Compliance will work with the Director of GRC and is responsible for leading efforts within the IT Audit and Compliance Team.
Provides technical expertise in all aspects of enterprise information security compliance for all applicable regulations. This position will audit, create, coordinate projects, documentation, presentations, and processes designed to ensure compliance with information security standards and regulations including PCI DSS, ISO 27000, FedRAMP, SOC 2, and GDPR.
This position will lead a team of IT audit and compliance professionals, both onshore and offshore, and be responsible for the continued expansion and career growth of the team members. In addition, this role is responsible for the risk identification, certification, analysis and response of processes, infrastructure, applications, vendors and other assets supporting business goals.
Major Functions/Responsibilities:
Education Requirement:
NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NICE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.
Known as an innovation powerhouse that excels in AI, cloud and digital, NICE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries.
NICE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.