Cybersecurity Compliance Supervisor - INSPYR Solutions

Title:  Cybersecurity Compliance Supervisor
Location: Miami, FL
Duration: Direct Hire
Compensation: $90,000 - 110,000
Work Requirements: US Citizen, GC Holders or Authorized to Work in the U.S.

Cybersecurity Compliance Supervisor

The Supervisor, Cybersecurity Compliance leverages their strong knowledge and expertise to supervise the overall Global Compliance Program. They possess a sound understanding of regulatory needs such as SOX, PCI-DSS, Data Privacy (GDPR/CCPA, etc.) and best practices from NIST CSF, ISO, SOC2, etc., with an emphasis on SOX.

Responsibilities:

• The supervisor will serve as a liaison between various Operating Units within the organization, internal & external audit, and IT teams, ensuring effective coordination and communication.
• They will do so to integrate compliance regulations and controls that will protect the company assets and data globally.
• The supervisor will actively participate in the day-to-day operations of the Security Compliance team within the Global Cybersecurity Services (GCS) organization and will coordinate tasks such as resource allocation, team training, project facilitation, scheduling, and organization of overall project health to complete deliverables.
• This position will have an active role in ensuring global compliance within the organization to all current regulatory guidelines and to GCS policies and standards.
• The supervisor will oversee a team of Compliance Analysts that are responsible for the execution of regulatory control testing and continuing compliance activities.
• This team of analysts has a deep background in Information Security and Compliance. In working with the team, the supervisor will partake in the planning and performance of annual assessments, testing, validation, and oversight of risk management.
• The supervisor will conduct a root cause analysis as needed, to determine root causes and lead corrective action efforts at the process level to ensure gaps are appropriately assessed, escalated & resolved.
• This includes oversight of implementing right process solutions to prevent recurrence.
• The supervisor will represent the Security Compliance team in cross-functional projects, leveraging their advanced skill set to streamline these processes.
• This position will be responsible for enhancing the global compliance and cybersecurity controls as it relates to shipboard and shoreside environments.
• The supervisor will be required to measure and report on KPIs, KRIs, audit findings, accomplishments and publish to senior management and key stakeholders.
• They are responsible for reporting on current regulatory compliance and internal security policy compliance to senior leadership.
• This position will also be responsible for continuing to modernize existing security and compliance practices, specifically automating testing processes and shifting from a periodic testing approach to a continuous compliance model.

Essential Functions:

• Oversee and assist with the development and execution of GCS's annual and on-going assessments which include the PCI-DSS continuous compliance program, SOX ITGC testing, and GDPR compliance assessment plans, among others, to ensure the integrity, effectiveness, and efficiency of the compliance framework.
• Raise awareness to the Business and IT stakeholders of compliance requirements, regulations, and controls
• Support the strategy to mature current Compliance practices to achieve departmental goal of shifting from "regulatory compliance” driven team to a Risk-based program and proactively work to identify potential gaps. Implement all necessary actions with relevant IT stakeholders and internal and external audit partners to achieve objectives of an effective compliance program and communicate to all key stakeholders and leadership
• Collaborate closely with GRC leadership team to develop brand IT Compliance Framework to include (but not be limited to) SOX, PCI-DSS, Data Privacy (GDPR/CCPA, etc.), IMO etc. to achieve a strong compliance maturity model.
• Advising on matters related to formal Compliance Governance processes which align and prioritize Data Privacy and Security Compliance initiatives.
• Assist in developing, preparing, and establishing executive dashboard reporting on compliance events, findings, accomplishments, and publishing these to senior management and key stakeholders
• Oversee the GCS IT Compliance program which includes conducting the annual validations and assessments including but not limited to SOX, PCI-DSS, Data Privacy Regulations (GDPR, CCPA, etc.), and external legal agreements; and determine scope, process, testing, documentation, reporting and remediation.
• Coordinate with IT Stakeholders, internal and external auditors, and Operating Unit Security Officers to ensure on-going IT compliance with published internal corporate policies and government regulations
•  Identify opportunities for automation in current compliance activities and leverage technologies to modernize and streamline team workflows
•  Foster a strong team spirit for remote and in-person team resources.
• Supervise staff by effectively developing, mentoring, and assessing their performance. Provide initial and ongoing training of new hires.
• Monitor the team's daily performance.
• Act as a resource and mentor for team members, providing ongoing guidance and support in navigating complex topics, troubleshooting challenges, and promoting best practices.
• Assist with and respond to inquiries received from stakeholders across the organization pertaining to the annual validations and assessments conducted by the Security Compliance team.
• Maintain effective working relationships with internal and external partners.
• Proactively monitor and communicate changes in business processes and provide guidance and support to internal stakeholders

Qualifications:

• Education: A Bachelor's degree in computer science, IT compliance, audit, or related area is required. An advanced degree is highly desirable particularly and excellent verbal and written communication skills. Master's degree a plus.
• Required Certifications: CISSP, CCEP, or CISA equivalent is desirable
• Years & or Area of Professional experience: 5+ of experience in Information Technology and Information Security/Compliance with the focus on executing compliance framework and programs such as PCI-DSS, SOX, HIPAA, etc.
• 5+ years of Information/Cybersecurity and Compliance experience.
• 5+ years of technology project management with experience building process, controls, operating procedures, and guidelines.
• Previous experience performing security and compliance assessments
• Critical Professional Related Technical/Computer Skills: Knowledge in various compliance regulations such as PCI-DSS, SOX, HIPAA, GDPR, NIST, etc.
• Knowledge of information technologies components as networking, security, different OSs, DB environments

About INSPYR Solutions
Technology is our focus and quality is our commitment. As a national expert in delivering flexible technology and talent solutions, we strategically align industry and technical expertise with our clients' business objectives and cultural needs. Our solutions are tailored to each client and include a wide variety of professional services, project, and talent solutions. By always striving for excellence and focusing on the human aspect of our business, we work seamlessly with our talent and clients to match the right solutions to the right opportunities. Learn more about us at inspyrsolutions.com.

INSPYR Solutions provides Equal Employment Opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, INSPYR Solutions complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities