70% - Compliance Support
- Conduct regular assessments to ensure compliance with cybersecurity regulations, standards, and industry best practices.
- Support the development of policies, procedures, and controls to address cybersecurity compliance requirements.
- Coordinate and participate in internal and external audits related to IT security compliance.
- Identify and assess risks to information assets and recommend mitigation strategies to address compliance gaps.
- Collaborate with IT and business stakeholders to implement security controls and remediate compliance issues.
- Monitor changes in regulations and standards to ensure ongoing compliance and recommend updates to policies and procedures as necessary.
- Prepare and maintain documentation, reports, and evidence of compliance activities for audit purposes.
- Provide guidance and training to staff on cybersecurity policies, procedures, and compliance requirements.
- Assist with incident response activities and investigations related to cybersecurity compliance issues.
30% - Support and maintain systems and processes related to security and compliance functions.
- Participate in audit activities, client audits, state DOI exams, RFP / due diligence reviews, internal audits
- Participate in all audit activities relating to SSAE-18 SOC 1 & 2 and SOX 404 IT audits ensuring work and deliverables in accordance with agreed upon timeframes and departmental procedures, standards, and protocols
- Partners cross-functionally, inter-departmentally and with the internal and external auditors to understand the process from an end-to-end perspective and appropriately and effectively communicates with these partners to understand the status for the corporation as a whole
- Ensures frequent communication of test and / or audit results and analysis on a timely basis to the appropriate stakeholders and senior management within the audit department
- Responsible for staying current on regulatory rules and changes within the industry, with specific focus on SSAE-18 SOC 1 & 2, SOX 404 and communicating industry / professional changes / developments to the audit department
- Participates in meetings with business unit to discuss test and / or audit scoping, testing progress and results
- Educate Assurant management and staff regarding risks and controls pertaining to security-related concepts, compliance and audit requirements.
- Evaluate, test and plan implementation of new or improved controls to keep Assurant current with industry standards and compliance requirements
- Collaboration with other Assurant (i.e. IAS, Privacy, IT Legal) and industry groups on IT compliance-related issues and concerns
- Recognize trends in security and compliance and emerging risks; making recommendations regarding policy / procedure updates to enable proactive security approach for Assurant
Manage, support and maintain security and compliance systems
For further information about Assurant, please visit our website :
Compliance Analyst III
Key Responsibilities:Perform compliance testing for qualified retirement plansReview and analyze plan documents for legal complianceProvide expert advice on complex testing and compliance issuesRequired Qualifications:5+ years of experience in defined contribution plan administrationDeep knowledge o...
Security Operations Center Analyst Tier 2
We are actively seeking an experienced Tier 2 SOC Analyst to join our Security Operations Center in Great Neck, New York. Analyze data from various log sources and applications to perform security incident investigations, threat hunting, and vulnerability assessments. Ensure adherence to security pr...
IT Security Analyst 3
A company is looking for an IT Security Analyst 3. Bachelor's degree in a relevant field or equivalent work experienceSupport on-call rotationsPassion for security and continuous learning in the fieldRecommended Security Certifications such as CISSP, CISA, OSCP, etc. ...
Senior Consumer Compliance Analyst
You may also have the opportunity to contribute to managing compliance issues, audits, third party compliance risk, compliance marketing reviews, and special consumer compliance projects as needed. SENIOR CONSUMER COMPLIANCE ANALYST. We are looking for a Senior Consumer Compliance Analyst to join ou...
Sr. Compliance Analyst
Compliance Analyst plays a key role in ensuring that the organization's policies, practices, and procedures align with global regulations, laws, and industry standards related to Diversity, Equity, and Inclusion (DEI). Minimum of 5-7 years of experience in HR, compliance, or DEI-related roles, with ...
Network Security Architect Analyst
Develop, implement, and manage comprehensive network security design, policies, plans, and procedures, encompassing security architectures, firewall policies, intrusion detection systems, and security data collection systems. Support the development and implementation of the organization's security ...
Sanctions Compliance Analyst
Berkshire Hathaway Specialty Insurance (BHSI) has an exciting opportunity for an analyst in our New York, NY location. This position is responsible for assisting the BHSI Legal Department in supporting the compliance function for the company. Support internal oversight of BHSIC’s compliance with san...
Cyber Security Analyst - Onsite
Required Skills : Network Security,WindowsAdditional Skills : Cyber Security Administrator,Security AnalystThis is a high PRIORITY requisition. The candidate must be knowledgeable of Information Security networking best practices and be able to evaluate design requests for Cyber Security threats. De...
Audit and Compliance Analyst
The New York City Department of Sanitation (the Department) is seeking one Audit and Compliance Analyst to join the Bureau of Commercial Waste (Bureau). Under the direction of the Manager of Audits and Compliance, the successful candidate will conduct audits and other reviews related to the Departme...
Senior, Cyber Security Analyst
Work with Security Engineering and the Security Operations Center to baseline user behaviors and events as well as build out new detections and response workflows. As a technology-enabled business, our approach to security operations must evolve and grow alongside our services and members. Directly ...