Jobs
>
Annapolis

    Security and Compliance Analyst - Annapolis, United States - Wolters Kluwer

    Wolters Kluwer
    Wolters Kluwer Annapolis, United States

    4 days ago

    Default job background
    Description
    Security Risk and Compliance Analyst will operate within a divisional security team reporting to the Director of Information Security.

    Analyst will be responsible for risk assessment, reporting and audit of Customer facing applications supporting the Tax and Accounting (TAA) and Corporate Performance (CP&ESG) application portfolio.

    Primary responsibilities will include maintaining compliance and assurance against established security frameworks including SO2 and ISO27001. Analyst will work on annual certification requirements and daily IT security tasks.

    IT Risk assessment and documentation and assessment of implemented security policies and standards will be a core focus of this position.

    Analyst will perform a wide range of security tasks to monitor and support the Confidentiality, Integrity, and Availability of applications.

    Candidate will focus on reviewing risk assessment of security controls, evidence collection, and reviewing IT security of audited systems.

    Will also be responsible for internal and external customer compliance reviews, IT system audits, implementation of internal team projects, and third-party vendor audits of Tax and Accounting (TAA) and Corporate Performance (CP&ESG) applications.

    Interaction with external customers and third-party auditors to perform risk assessments and present evidence will be required.

    Essential Duties and responsibilities


    Provide coordination and support of activities related to external and internal compliance audits and security governance across Wolters Kluwer division.

    This will include a review of business-based needs, interaction with auditors, cost considerations, and coordination of onsite or remote audits.

    Audits frameworks could include SOC2, ISO27001, NIST 800-53, and privacy related frameworks such as GDPR


    Perform and document annual IT risk assessments related to security and compliance controls for audited products within the TAA application portfolio.

    Review IT Vulnerability assessments for hardware and software systems, recommend and track remediation of vulnerability data across multiple systems.


    Work with Tax divisional application owners and application security owners to document and track Plan of Action and Milestones (POAM) for specific systems.

    Perform Review and track risk register of findings across the enterprise and work with application owners to remediate.

    Coordinate with Global Corporate IT Operations teams to manage workload and special project intakes. Ensure that all critical vendors are assessed annually and adhere to contractual requirements.


    Coordinate and participate in security activities and effectively communicates across cross functional teams including Global Business (GBS), Corporate, Global Security (GIS), Risk Management, Legal, TAA Enterprise Architecture, and TAA divisional security.

    Participate in Global Information Security maturity assessments based on NIST

    Other Duties

    Assist with the coordination of Risk, Compliance and Privacy related activities and requests across Wolters Kluwer TAA businesses. Participate in global GDPR / Data privacy controls reviews as needed.


    Participate in Security Incident Response tabletop, events or critical incidents as they occur to represent divisional security team and coordinate with divisional application owners as required.

    Create and manage ServiceNow incident tickets for tasks to be assigned to WK Operations teams as needed.


    Perform custom security or compliance training as part of the annual security awareness program for TAA employees and contractors in coordination with Global teams.

    Create and provide additional training as needed to meet custom requirements of TAA businesses.

    Job Qualifications


    Education:
    Bachelor's Degree in Business, Computer Information Systems, or a related Computer Science field is required

    Experience:

    3+ Years of Experience working in an Information Security role or relevant information security domain knowledge

    3+ years of experience working with Compliance auditors and security frameworks.

    Experience with SOC2 / ISO27001 audit frameworks is required.

    Understanding of Development methodology (SDLC) and Agile (SAFE) is preferred.

    Cloud security controls and experience within MS Azure or AWS systems is preferred.

    CISSP, SSCP, ISACA, or GIAC security certification is preferred.

    Other Knowl edge, Skills, Abilities or Certifications:

    Knowledge of audit methodology frameworks, SharePoint Administration, and audit tracking tools

    Strong organizational skills, including ability to manage timelines, both as an individual and as part of a team.

    Excellent oral and written communication and interpersonal skills

    Strong Technology background (Software development, Information Technology, Vendor Risk Assessment)

    Proven track record of working with cross-functional business leaders to achieve difficult objectives

    Ability to perform in complex cross-functional business environment

    Strong problem solving and troubleshooting skills

    Team building and leadership skills

    Proficient in Microsoft Word, Excel, and SharePoint Administration

    Strong knowledge of ServiceNow platform

    Travel requirements

    Some travel may be required

    EQUAL EMPLOYMENT OPPORTUNITY Wolters Kluwer U. S. Corporation and all of its subsidiaries, divisions and customer/business units is an Equal Opportunity / Affirmative Action employer.

    All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.

    #J-18808-Ljbffr
  • Crossfire Consulting

    Cyber Security Compliance Analyst

    2 weeks ago

    Crossfire Consulting Annapolis, United States

    Security Analyst PRIMARY PURPOSE OF POSITION · The Cyber Security Compliance Analyst will exist as part of the broader Cyber Security Governance function that works across IT and business teams to ensure compliance with cyber-specific laws, rules, and regulations applicable to t ...

  • Crossfire Consulting

    Cyber Security Compliance Analyst

    4 days ago

    Crossfire Consulting Annapolis, United States

    Security Analyst PRIMARY PURPOSE OF POSITION · The Cyber Security Compliance Analyst will exist as part of the broader Cyber Security Governance function that works across IT and business teams to ensure compliance with cyber-specific laws, rules, and regulations applicable to ...

  • Treasury, Departmental Offices

    Compliance Analyst

    3 weeks ago

    Treasury, Departmental Offices Washington, United States

    Summary · This position is located at Departmental Offices,DO - Recover Prog/ Small Business,Transprt, Legacy. As a/an Compliance Analyst, you will ensure that recipients comply with their funding requirements and proactively assist recipients come into compliance to facilitate ...

  • Crossfire Consulting

    Cyber Security Compliance Analyst

    2 weeks ago

    Crossfire Consulting Annapolis, United States

    Security Analyst PRIMARY PURPOSE OF POSITIONThe Cyber Security Compliance Analyst will exist as part of the broader Cyber Security Governance function that works across IT and business teams to ensure compliance with cyber-specific laws, rules, and regulations applicable to the o ...

  • ICONMA

    Cyber Security Compliance Analyst

    2 weeks ago

    ICONMA Annapolis, United States

    Cyber Security Compliance Analyst · Location: Annapolis, MD · Primary Purpose of Position: The Cyber Security Compliance Analyst will exist as part of the broader Cyber Security Governance function that works across Constellation IT and business teams to ensure compliance with ...

  • ICONMA

    Cyber Security Compliance Analyst

    2 weeks ago

    ICONMA Annapolis, United States

    Cyber Security Compliance Analyst · Location: Annapolis, MD · Primary Purpose of Position: · The Cyber Security Compliance Analyst will exist as part of the broader Cyber Security Governance function that works across Constellation IT and business teams to ensure compliance wit ...

  • Universal Account Servicing LLC

    Compliance Analyst

    5 hours ago

    Universal Account Servicing LLC Parkville, MO, United States Full time

    UGA Finance is a growing financial technology company that offers consumers credit options at the point of sale. We are a leader in providing financing and servicing for unsecured lending in key verticals, including Education, Medical, Membership and Consumer Goods. · Our new, s ...

  • C3M Power Systems LLC

    Compliance Analyst

    21 hours ago

    C3M Power Systems LLC Capitol Heights, United States

    The Compliance Analyst serves as the project compliance expert on a wide portfolio of Clarks government-funded construction projects. The compliance analyst will work alongside a dedicated team of highly trained compliance professionals to ensure our projects meet their complianc ...

  • Green Key Resources

    Compliance Analyst

    3 weeks ago

    Green Key Resources Capitol Heights, United States

    Job Description · Job DescriptionWe are currently hiring a Compliance Analyst for a great client in Capitol Heights, MD. The position is onsite, five days a week. · The client seeks a candidate to manage certified payroll reporting and monitoring, daily reports, business reporti ...

  • Clark Construction Group

    Compliance Analyst

    2 weeks ago

    Clark Construction Group Capitol Heights, United States

    The Compliance Analyst serves as the project compliance expert on a wide portfolio of Clark's government-funded construction projects. The compliance analyst will work alongside a dedicated team of highly trained compliance professionals to ensure our projects meet their complian ...

  • Clark Construction Group

    Compliance Analyst

    21 hours ago

    Clark Construction Group Capitol Heights, United States

    The Compliance Analyst serves as the project compliance expert on a wide portfolio of Clarks government-funded construction projects. The compliance analyst will work alongside a dedicated team of highly trained compliance professionals to ensure our projects meet their complianc ...

  • CBIZ

    Compliance Analyst

    21 hours ago

    CBIZ Baltimore, United States

    Myers and Stauffer LC is a certified public accounting and health care reimbursement consulting firm, specializing in audit, accounting, data management and consulting services to government-sponsored health care programs (primarily state Medicaid agencies, and the federal Center ...

  • ICMA-RC

    Compliance Analyst

    2 weeks ago

    ICMA-RC Washington, United States

    Join a great place to work with MissionSquare Retirement, a FINANCIAL SERVICES LEADER in public sector employee retirement products and services. Headquartered in Washington, DC, MissionSquare Retirement was founded to provide portable retirement benefits for city and county mana ...

  • Facet

    Compliance Analyst

    2 weeks ago

    Facet Baltimore, United States

    Job Description · Job DescriptionAbout The Role:At Facet Wealth, we put the client above all else. As a Compliance Analyst, you will live out this value by working on a daily basis with the entire Facet team to ensure that we continue to build a work environment where all issues ...

  • Anonymous Employer

    Compliance Analyst

    4 days ago

    Anonymous Employer San Francisco, United States Permanent

    This position requires an active SECRET clearance to be considered. Conduct license request reviews to ensure appropriate compliance with registration requirements. Initiate inquiries and prepare final action for senior staff approval. Update and maintain the State Departments Wa ...

  • The Rock Creek Group

    Compliance Analyst

    2 weeks ago

    The Rock Creek Group Washington, United States

    Company Description · RockCreek is a leading global investment management firm that applies data-driven technology and innovation to sustainable investing. RockCreek's entrepreneurial spirit, open culture, and inclusive team lead to better investments for universities, foundation ...

  • Missing Link Security

    508 Compliance Analyst

    2 weeks ago

    Missing Link Security Washington, United States

    Apply · Description · Missing Link Security, a government contractor dedicated to driving digital transformation, is seeking a skilled 508 Compliance Analyst to join our dynamic and innovative team. As a key member of our Enterprise Data Warehouse (EDW) team, you will play a cruc ...

  • Stifel

    Compliance Analyst I

    2 weeks ago

    Stifel Baltimore, United States

    Summary · The Municipal Compliance Analyst I is a key member of the Municipal Compliance team responsible for compliance analysis and reporting requirements, including conducting conflict check requests and reviewing and approving political contribution requests and bond ballot c ...

  • BAI Incorporated

    Biosafety Compliance Analyst

    4 weeks ago

    BAI Incorporated Washington, United States

    BAI is seeking a Biosafety Compliance Analyst to support a U.S. government agency's cutting-edge science and technology research and development program. · Our Analysts assist Federal Program Managers and researchers in complying with applicable biosafety and biosecurity regulato ...

  • Erickson Senior Living

    Tax Compliance Analyst

    3 weeks ago

    Erickson Senior Living Baltimore, United States

    Location: Erickson Senior Living Erickson Senior Living, headquartered in Baltimore, Maryland is a national provider of senior living and health care with campuses in 11 statesand growing. Erickson Senior Living develops and manages senior living communities and health services a ...