Cloud GRC Compliance Manager
3.
5 Full-time 1 hour ago Full Job Description Overview:
Enavate is a consulting company that transforms businesses and the lives they touch.
To us, it's personal.
Enavate has a high Glassdoor rating and a culture centered around Empowerment.
Every member of our team is pa Finish ssionate, creative, and empowered to make decisions they think are best.
We're going places, and we want you to come with us.
About the role:
The Enavate Cloud GRC Manager is responsible for creating and maintaining policies and procedures that ensure Enavate is responsibly protecting its clients, employees, and associated data.
The GRC Manager will directly lead and coordinate audit activities such as annual SOC 2 Type 2 and HIPAA Type 1 audits and other compliance-related assessments.
The GRC Manager will be the subject matter expert concerning business and IT best practices and will interface with clients and potential clients regarding Enavate's GRC initiatives, when necessary.
Duties will include the oversight of change management, ongoing scheduled reviews of policies and procedures, validating process controls are followed, developing strategy for future GRC initiatives, evangelizing cloud team security awareness and responding to client questionnaires regarding security and policies.
Key
Responsibilities:
Your day will consist of:
Develop and maintain up-to-date cloud information security policies, procedures, standards and guidelines.
Conduct yearly HIPAA/HITECH and SOC 2 audits for private and public cloud operations.
Vendors Lead cloud security and operation teams to execute incident response procedures, conduct forensics investigations and identify remediation objectives Identify and resolve compliance issues, coordinate corrective actions and communicate impact with the stakeholders.
Regularly interact with leadership at various levels to effectively communicate current state of compliance and security addressing areas of concern with proposed initiatives to reduce risk.
Partner with the Service Delivery teams to engage customers in discussions about security requirements, concerns about compliance and customer cybersecurity objectives.
Stay updated on information security advancements, new compliance requirements and cybersecurity trends to advance the security posture of the cloud operations.
Maintains continuous, open and consistent professional communication with customers, peers and leadership on compliance and security related incidents, projects and cloud initiatives.
Establishes cloud agendas and conducts biweekly Governance, Risk and Compliance (GRC) status meetings along with quarterly GRC strategy and risk register review meetings with leadership and relevant cloud team leads.
Qualifications:
Here is what it takes to be successful in the role:
A strong understanding of assurance related guidelines, standards and frameworks including but not limited to ISOIEC, COBIT, ITIL, NIST, HIPAA/HITECH, SSAE 16 SOC1/2, ITAR, CJIS and GDPR Familiar with Microsoft Azure Well Architected Framework, Microsoft Cloud Adoption Framework for Azure and Azure Governance policies.
Minimum of 5 years experience in a compliance manager role securing enterprise cloud infrastructure and associated operations based on IT Service Management principles.
Must have managed the execution of at least two SOC or ISO audits through evidence submission and completion to final report.
Readily adaptable to performing as a compliance manager in a multi-customer, multi-tenant private and public hybrid cloud environment with internal and customers Proven success in identifying compliance deficiencies, outlining improvement opportunities, developing remediation plans and leading the successful execution of associated security initiatives Experience with project management methodologies for project creation, progress tracking and cross functional team management.
Extremely adept at managing compliance audits from third party auditor selection, to signed contract, establishing the documented audit scope, supervising the collection of evidence and addressing auditor concerns on submissions to completion.
Highly capable in the use of IT Service Management software for handling service delivery tasks including but not limited to:
incidents, change orders, project tasks, reporting, etc.
Proficient in Microsoft Office applications plus Teams collaboration.
Excellent verbal/written communication and relationship building capabilities.
Well founded in problem-solving, critical thinking and analytical reasoning Exceptional time management and organizational skills while working on multiple simultaneous projects.
Must understand and live the principles of servant and situational leadership as well as team member empowerment High emotional intelligence Strong customer service skills Working Environment:
Office/Home Environment More about Enavate:
We are a world-class team of high performers, proving that valuing people over profit drives healthy revenue growth.
Our management style is untraditional.
At Enavate, we don't have departments and managers, top-down mandates, or rigid bureaucracy.
We have self-directed pods with people empowered to make decisions.
We believe this leads to better outcomes and a happier, more fulfilling career.
Empowerment, autonomy, transparency, and shared purpose are not just buzzwords.
They're how we conduct business.
The Enavate team of more than 400 professionals helps organizations get to the Cloud, maximize technology investments, and drive new business.
As a Microsoft Gold Partner and NetSuite Solution Provider, Enavate provides consulting, software implementations, systems upgrades, Cloud deployments and managed IT services to more than 1,800 customers across North America.
Learn more about Enavate, our culture of empowerment, and our fresh approach to helping companies innovate, grow and navigate change at www.
enavate.
com/about-us/careers.
#LI-Remote #LI-SR1.
Estimated Salary: $20 to $28 per hour based on qualifications.
5 Full-time 1 hour ago Full Job Description Overview:
Enavate is a consulting company that transforms businesses and the lives they touch.
To us, it's personal.
Enavate has a high Glassdoor rating and a culture centered around Empowerment.
Every member of our team is pa Finish ssionate, creative, and empowered to make decisions they think are best.
We're going places, and we want you to come with us.
About the role:
The Enavate Cloud GRC Manager is responsible for creating and maintaining policies and procedures that ensure Enavate is responsibly protecting its clients, employees, and associated data.
The GRC Manager will directly lead and coordinate audit activities such as annual SOC 2 Type 2 and HIPAA Type 1 audits and other compliance-related assessments.
The GRC Manager will be the subject matter expert concerning business and IT best practices and will interface with clients and potential clients regarding Enavate's GRC initiatives, when necessary.
Duties will include the oversight of change management, ongoing scheduled reviews of policies and procedures, validating process controls are followed, developing strategy for future GRC initiatives, evangelizing cloud team security awareness and responding to client questionnaires regarding security and policies.
Key
Responsibilities:
Your day will consist of:
Develop and maintain up-to-date cloud information security policies, procedures, standards and guidelines.
Conduct yearly HIPAA/HITECH and SOC 2 audits for private and public cloud operations.
Vendors Lead cloud security and operation teams to execute incident response procedures, conduct forensics investigations and identify remediation objectives Identify and resolve compliance issues, coordinate corrective actions and communicate impact with the stakeholders.
Regularly interact with leadership at various levels to effectively communicate current state of compliance and security addressing areas of concern with proposed initiatives to reduce risk.
Partner with the Service Delivery teams to engage customers in discussions about security requirements, concerns about compliance and customer cybersecurity objectives.
Stay updated on information security advancements, new compliance requirements and cybersecurity trends to advance the security posture of the cloud operations.
Maintains continuous, open and consistent professional communication with customers, peers and leadership on compliance and security related incidents, projects and cloud initiatives.
Establishes cloud agendas and conducts biweekly Governance, Risk and Compliance (GRC) status meetings along with quarterly GRC strategy and risk register review meetings with leadership and relevant cloud team leads.
Qualifications:
Here is what it takes to be successful in the role:
A strong understanding of assurance related guidelines, standards and frameworks including but not limited to ISOIEC, COBIT, ITIL, NIST, HIPAA/HITECH, SSAE 16 SOC1/2, ITAR, CJIS and GDPR Familiar with Microsoft Azure Well Architected Framework, Microsoft Cloud Adoption Framework for Azure and Azure Governance policies.
Minimum of 5 years experience in a compliance manager role securing enterprise cloud infrastructure and associated operations based on IT Service Management principles.
Must have managed the execution of at least two SOC or ISO audits through evidence submission and completion to final report.
Readily adaptable to performing as a compliance manager in a multi-customer, multi-tenant private and public hybrid cloud environment with internal and customers Proven success in identifying compliance deficiencies, outlining improvement opportunities, developing remediation plans and leading the successful execution of associated security initiatives Experience with project management methodologies for project creation, progress tracking and cross functional team management.
Extremely adept at managing compliance audits from third party auditor selection, to signed contract, establishing the documented audit scope, supervising the collection of evidence and addressing auditor concerns on submissions to completion.
Highly capable in the use of IT Service Management software for handling service delivery tasks including but not limited to:
incidents, change orders, project tasks, reporting, etc.
Proficient in Microsoft Office applications plus Teams collaboration.
Excellent verbal/written communication and relationship building capabilities.
Well founded in problem-solving, critical thinking and analytical reasoning Exceptional time management and organizational skills while working on multiple simultaneous projects.
Must understand and live the principles of servant and situational leadership as well as team member empowerment High emotional intelligence Strong customer service skills Working Environment:
Office/Home Environment More about Enavate:
We are a world-class team of high performers, proving that valuing people over profit drives healthy revenue growth.
Our management style is untraditional.
At Enavate, we don't have departments and managers, top-down mandates, or rigid bureaucracy.
We have self-directed pods with people empowered to make decisions.
We believe this leads to better outcomes and a happier, more fulfilling career.
Empowerment, autonomy, transparency, and shared purpose are not just buzzwords.
They're how we conduct business.
The Enavate team of more than 400 professionals helps organizations get to the Cloud, maximize technology investments, and drive new business.
As a Microsoft Gold Partner and NetSuite Solution Provider, Enavate provides consulting, software implementations, systems upgrades, Cloud deployments and managed IT services to more than 1,800 customers across North America.
Learn more about Enavate, our culture of empowerment, and our fresh approach to helping companies innovate, grow and navigate change at www.
enavate.
com/about-us/careers.
#LI-Remote #LI-SR1.
Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
