IT Security Compliance Director
Virtual Vocations Inc, New York, NY, United States
A company is looking for a Director of IT Security & Compliance, responsible for leading enterprise-wide security compliance and IT audit initiatives.
Key Responsibilities
Lead and manage external certification audit processes and serve as the primary contact for auditors Define and lead the enterprise third-party risk management program, assessing vendor risks and ensuring compliance Develop and implement internal risk assessment processes and manage corrective action plans for audit findings
Required Qualifications
Bachelor's degree in Information Security, Information Technology, Accounting, or a related field 10+ years of experience in IT security, compliance, IT audit, and/or third-party risk management Strong experience with SOC 1 / SOC 2, ISO 27001, HITRUST, and IT General Controls (ITGCs) Proven experience managing IT audits and vendor risk assessments Experience with GRC platforms and risk scoring methodologies
Lead and manage external certification audit processes and serve as the primary contact for auditors Define and lead the enterprise third-party risk management program, assessing vendor risks and ensuring compliance Develop and implement internal risk assessment processes and manage corrective action plans for audit findings
Required Qualifications
Bachelor's degree in Information Security, Information Technology, Accounting, or a related field 10+ years of experience in IT security, compliance, IT audit, and/or third-party risk management Strong experience with SOC 1 / SOC 2, ISO 27001, HITRUST, and IT General Controls (ITGCs) Proven experience managing IT audits and vendor risk assessments Experience with GRC platforms and risk scoring methodologies