-
Compliance Lead
1 week ago
Relay Financial Chicago, United StatesOur mission is to increase the success rate of small businesses. Traditional banking has been a growth limiter rather than a growth enabler for business owners, and were changing that. Relay is the all-in-one, collaborative money management platform. Were building for employer SM ...
-
Lead Compliance Investigator
1 day ago
Health Care Service Corporation Chicago, United States Full timeAt HCSC, we consider our employees the cornerstone of our business and the foundation to our success. We enable employees to craft their career with curated development plans that set their learning path to a rewarding and fulfilling career. · Come join us and be part of a purpos ...
-
Training & Compliance Lead
6 days ago
KENTECH CONSULTING INC Chicago, United StatesJob Description · Job DescriptionCompany Description · KENTECH Consulting Inc. is an award-winning background technology screening company. We are the creators of innovative projects such as - 1st consumer background checking system of its kind, and ClarityIQ a high-tech/high-to ...
-
Compliance Testing Lead
3 days ago
Enova Chicago, United StatesWe are interested in every qualified candidate who is eligible to work in the United States. However, we are not able to sponsor visas or take over sponsorship at this time. · #BI-Hybrid #LI-Hybrid · Reports to: Sr. Compliance Manager · Team: Risk Management · About the Role: ...
-
Training & Compliance Lead
22 hours ago
Kentech Chicago, United StatesCompany Description · KENTECH Consulting Inc. · is an award-winning background technology screening company. We are the creators of innovative projects such as - 1st consumer background checking system of its kind, and ClarityIQ a high-tech/high-touch investigative case manage ...
-
Data Compliance Team Lead
4 weeks ago
City of Chicago School District - Chicago Public Schools Chicago, United StatesChicago Public Schools (CPS) is one of the largest school districts in the United States, serving over 340,000 students in 600 schools and employing nearly 36,000 people, most of them teachers. CPS has set ambitious goals to ensure that every student Team Lead, Compliance, Data, ...
-
Data Compliance Team Lead
3 weeks ago
Chicago Public Schools Chicago, United StatesChicago Public Schools (CPS) is one of the largest school districts in the United States, serving over 340,000 students in 600 schools and employing nearly 36,000 people, most of them teachers. CPS has set ambitious goals to ensure that every student, in every school and every ne ...
-
Training & Compliance Lead
3 weeks ago
Kentech Chicago, United StatesCompany Description · KENTECH Consulting Inc. · is an award-winning background technology screening company. We are the creators of innovative projects such as - 1st consumer background checking system of its kind, and ClarityIQ a high-tech/high-touch investigative case manage ...
-
Training & Compliance Lead
3 weeks ago
KENTECH Consulting Chicago, United StatesCompany Description · KENTECH Consulting Inc. is an award-winning background technology screening company. We are the creators of innovative projects such as - 1st consumer background checking system of its kind, and ClarityIQ a high-tech/high-touch investigative case management ...
-
Lead Compliance Tester
1 week ago
Discover Chicago, United States Full timeDiscover. A brighter future. · With us, you'll do meaningful work from Day 1. Our collaborative culture is built on three core behaviors: We Play to Win, We Get Better Every Day & We Succeed Together. And we mean it - we want you to grow and make a difference at one of the world' ...
-
Governance, Risk, and Compliance Lead
3 weeks ago
The University of Chicago Chicago, United StatesGovernance, Risk, and Compliance Lead page is loaded · Governance, Risk, and Compliance Lead · Apply · locations · Chicago, IL · time type · Full time · posted on · Posted 5 Days Ago · job requisition id · JR25905 · Department · Provost Globus · About the Department ...
-
Data Compliance Team Lead
3 weeks ago
Chicago Public Schools Chicago, United StatesChicago Public Schools (CPS) is one of the largest school districts in the United States, serving over 340,000 students in 600+ schools and employing nearly 36,000 people, most of them teachers. CPS has set ambitious goals to ensure that every student, in every school and every n ...
-
Senior Security Compliance Lead
2 weeks ago
AbbVie North Chicago, United StatesJob Description · Job DescriptionCompany Description · AbbVie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. We strive to have a remarkable impact on people's lives acr ...
-
Senior Security Compliance Lead
1 week ago
AbbVie North Chicago, United States Full time· Company Description · AbbVie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. We strive to have a remarkable impact on people's lives across several key therapeutic ar ...
-
Compliance Operations Lead
3 weeks ago
BP Energy Whiting, United StatesEntity: · Production & Operations · Job Family Group: · Operations Group · Job Description: · Key Accountabilities: · Acts as Product Owner in the Compliance Improvement Program Management Office (PMO) for the operations discipline focused squad(s) supporting collaboration across ...
-
Northern Trust Corp. Chicago, United StatesAbout Northern Trust: · Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. · Northern Trust is proud to provide innovative financial services and guidance to the world's most succe ...
-
Regional Lead, Compliance
3 days ago
Industrial and Financial Systems Itasca, United StatesRegional Lead, Compliance & License Management · Full-time · IFS Referral Bonus Code: SH · Job location: Remote · IFS is a billion-dollar revenue company with 5000+ employees on all continents. We deliver award winning enterprise software solutions through the use of embedded di ...
-
Regional Lead, Compliance
2 weeks ago
IFS Itasca, United StatesCompany Description · IFS is a billion-dollar revenue company with 5000+ employees on all continents. We deliver award winning enterprise software solutions through the use of embedded digital innovation and a single cloud-based platform to help businesses be their best when it ...
-
Regional Lead, Compliance
1 week ago
IFS Itasca, United StatesCompany DescriptionIFS is a billion-dollar revenue company with 5000+ employees on all continents. We deliver award winning enterprise software solutions through the use of embedded digital innovation and a single cloud-based platform to help businesses be their best when it real ...
-
Compliance Operations Lead
4 weeks ago
BP Whiting, United StatesEntity: · Production & Operations · Job Family Group: · Operations Group · Job Description: · Key Accountabilities: · * Acts as Product Owner in the Compliance Improvement Program Management Office (PMO) for the operations discipline focused squad(s) supporting collaboratio ...
Governance, Risk, and Compliance Lead - Chicago, United States - The University of Chicago
Description
Governance, Risk, and Compliance Lead
locations
Chicago, IL
time type
Full time
job requisition id
JR25905
Department
Provost Globus
About the Department
Globus ) is a sustainable, non-profit unit within The University of Chicago delivering solutions to the research community worldwide. Globus develops and provides critical services that support scientific research for governmental, academic, and commercial organizations in a wide range of disciplines including life sciences, physics, and astronomy. We develop and operate commercial-quality, cloud-based software application and platform services used by 10s of thousands of researchers to manage their large–and growing–data management challenges. We have offices located at 401 North Michigan Avenue in the heart of downtown Chicago and remote employees who work-from-home. Globus, together with Globus Labs, a research group within the University of Chicago, and part of the Data Science and Learning Division at Argonne National Labs, develop and deploy cutting edge technologies to solve new challenges facing the scientific community and enable break-through scientific discoveries.
Job Summary
As the Governance, Risk, and Compliance Lead for Globus, you will spearhead the Unit's compliance endeavors, ensuring alignment with essential regulatory standards for both our products and operations. Globus offers a robust suite of capabilities for data and compute management, along with automation, serving researchers worldwide. Our offerings come in the form of a hosted service (SaaS) and platform (PaaS), utilizing a hybrid architecture, with management services hosted on Amazon Web Services (AWS).
Globus capabilities are offered for use with protected data and adhere to NIST controls and the HIPAA Security Rule. In your capacity, you'll oversee the compliance program to uphold these standards, crafting and leading initiatives aimed at enhancing operational efficiency as we expand. Your focus will be on ensuring that we consistently meet our customers' compliance requirements while scaling our operations effectively. As the resident expert within the team, you'll manage security assessments, monitoring compliance status, providing procedural guidance, implementing security controls, and driving process improvement and maturity initiatives.
Beyond sustaining our current compliance framework, your role will involve leveraging your expertise and insights into the Globus customer base to advocate for and implement additional compliance standards in response to customer demand and market trends. This will entail conducting thorough gap analyses and collaborating with third-party vendors as necessary.
If you thrive in collaborative, innovative, mission-oriented environments, consider joining Globus where your skills and passion for compliance can make a meaningful impact on research worldwide
Responsibilities
Leads implementation and maintenance of NIST risk management framework and controls to manage security and privacy risks for the Unit.
Develops compliance strategy, and leads and executes various tasks based on those strategies, including development and maintenance of policies and procedures, system security plan, plans of actions and milestones.
Reviews technical procedures developed by the operations team, and ensure compliance with policies.
Supports the operations team in managing security incidents, generating reports, and serving as the primary liaison for communication with both internal and external stakeholders, in adherence to established policies.
Serves as compliance lead on internal and external assessments and audits.
Assists customers with security risk assessment of Globus products, and owns all customer communication on security and compliance.
Collaborates with the procurement team to review contract terms and data protection agreements pertaining to product and operational security. Ensures that contractual obligations are in line with the current operational standards of Globus.
Serves as a mentor to staff providing compliance and security consulting and awareness efforts, including engaging with the product team to analyze security of applications to provide risk recommendations.
Uses a deep understanding of IT expertise to develop and implement security and compliance policies, guidelines, and safe practices for the unit.
Leads teams to conduct in-depth information technology risk assessments; makes recommendations and designs improvements to IT security procedures.
Performs other related work as needed.
Minimum Qualifications
Education:
Minimum requirements include a college or university degree in related field.
---
Work Experience:
Minimum requirements include knowledge and skills developed through 7+ years of work experience in a related job discipline.
---
Certifications:
Relevant security certifications such as CISSP, CISM, CISA, CRISC, or compliance certifications, and/or SANS GIAC certification for technical knowledge (e.g. GWAPT, GPCS, GWEB) - .
---
Preferred Qualifications
Experience:
Implementation of security or compliance frameworks such as HIPAA, NIST SP 800-53r5, NIST SP , or similar.
Maintaining security and compliance for production applications within cloud-based environments, with a preference for Amazon Web Services.
Proficiency in cybersecurity and compliance within higher education and/or government sectors.
Demonstrated experience in conducting information security audits or risk assessments.
Experience as security and/or network engineer and/or system administration.
Technical Skills or Knowledge:
Proven track record of managing Governance, Risk and Compliance programs and supporting various compliance frameworks, including NIST RMF, SOC 1/SOC 2, HITRUST, HIPAA, and/or optionally FedRAMP
Strong knowledge of information security risk management frameworks, such as NIST RMF, and compliance practices.
Demonstrated proficiency in administering intricate security controls and configurations for applications.
Well-versed in public cloud security and compliance best practices, particularly in supporting compliance for applications hosted on cloud platforms.
Expertise in AWS security controls and compliance resources.
Some familiarity with Governance Risk and Compliance tools and suites (e.g. Navex, LogicGate).
Preferred Competencies
Strong crisis management and leadership ability.
Work collaboratively with cross-functional teams, especially in an engineering and product environment, and build consensus across teams.
Enjoys solving complex and hard problems and can turn incomplete, conflicting, or ambiguous inputs into actionable plans.
Excellent verbal and written communication skills.
Strong analytical and problem solving skills.
Excellent organizational skills and constant attention to detail.
Work independently, and balance competing priorities.
Weigh business needs against security concerns.
Working Conditions
Occasional evening or weekend hours.
Option available for hybrid work with occasional required attendance at in-person meetings.
Job Family
Information Technology
Role Impact
Individual Contributor
FLSA Status
Exempt
Pay Frequency
Monthly
Scheduled Weekly Hours
37.5
Benefits Eligible
Yes
Drug Test Required
No
Health Screen Required
No
Motor Vehicle Record Inquiry Required
No