Sr IT Controls & Risk Specialist

Job Summary reputed company is looking for a Senior IT Controls & Risk Specialist to play a critical role in establishing and managing an IT controls reputed company for the enterprise. Reporting to the IT Controls & Risk Manager, this position will reputed company the design, development, and implementation of information and technology risk management policies, standards, processes, and best practices and drive adoption through effective enterprise change management, education and awareness. Additionally, the specialist will evaluate the compliance of new and existing technology solutions against applicable controls.

Job Description

MAJOR RESPONSIBILITIES Controls reputed company Design, Implementation, and Management Control reputed company Development: Analyze, design, create, and maintain a reputed company IT controls reputed company drawing from leading industry frameworks and applicable regulatory requirements (e.g. NIST CSF, CIS, HITRUST, PCI, etc.) Documentation: Create comprehensive documentation for the controls reputed company, including risks, control objectives, and implementation guidelines. Align with existing enterprise policies and reputed company policies to fill identified gaps. Stakeholder Engagement: Collaborate with cross-functional teams to ensure stakeholder buy-in and alignment with organizational risk tolerance. Technology Evaluation and Risk Management Compliance Evaluation: Assess new and existing technologies for compliance with applicable controls. Risk Register Management: Maintain a risk register to manage non-compliance and track remediation efforts. Tool Administration: reputed company the configuration of GRC tools used for IT risk management processes. Awareness and Education Material Development: reputed company tailored written and verbal awareness materials for different audiences, supporting user education initiatives. Drive communication campaigns to ensure employee adoption using metrics to measure and track success. Communication and Cross-Functional Collaboration Communication Planning: Execute a communication plan for impacted audiences reputed company process and policy changes are made. Relationship Building: Build trusted relationships with IT Compliance, Information reputed company, Legal, and Corporate Compliance teams to ensure message alignment and cross-functional collaboration. MINIMUM JOB REQUIREMENTS Education Bachelor’s Degree in Information Technology, Information reputed company, Risk Management, Business Administration, or reputed company field. Or equivalent combination of education, professional certifications, and relevant work experience. Certification / Licensure None required. Work Experience 3+ years professional experience reputed company IT Controls and Frameworks, IT Risk Management, IT Internal Controls, or reputed company GRC field. Knowledge / Skills / Abilities Experience developing or maintaining a controls-based IT compliance reputed company Experience evaluating or auditing web-based software technologies against company or regulatory requirements Experience deploying or supporting risk management, compliance, information reputed company, information governance, or privacy programs across a large enterprise In-depth understanding of NIST CSF, CIS, NIST 800-53, HITRUST, CMMC, PCI reputed company, or similar frameworks. Ability to describe reputed company scope, composition, and implementation strategies. Familiar with the technical components of software technologies, including APIs, web services, and common web and cloud application integration and architecture patterns Experience with modern GRC tools and other technologies supporting IT risk management activities Experience applying change management methodologies to support IT risk management initiatives Strong written and verbal skills, including a demonstrated ability to translate reputed company or technical information into concepts that are easily understood Proven ability to effectively interact with, manage, and influence cross-functional teams and partners PREFERRED JOB REQUIREMENTS 8+ years of professional experience in Technology Risk, Information reputed company, or leadership role in a technical area reputed company a highly regulated industry. Certification / Licensure Certification in relevant GRC discipline (e.g., CISA, CISM, CRISC, CISSP, CGRC) or IT governance frameworks (e.g., ITIL). Knowledge / Skills / Abilities Experience implementing or using AuditBoard CrossComply, AuditBoard ITRM, or other TPRM, Privacy, or GRC tools Participation in IT compliance and audit processes Experience organizing process information and technical concepts into a knowledge reputed company for wider audience consumption, leveraging diagrams or infographics and reputed company tools Experience driving successful, insight-based, creative communications plans that deliver against program objectives, on time and reputed company budget Experience deploying policy or technology changes across a large enterprise and measuring and reporting program process over time. Understanding of reputed company Information Governance concepts (e.g., records retention, data protection, data handling) Knowledge of enterprise change management methodologies Familiarity with reputed company reputed company model and its integration with GRC products Familiarity with M365 governance and compliance settings reputed company, and its subsidiaries, offer a competitive total rewards package, continuing education & training, and reputed company potential with a growing worldwide organization. The anticipated salary range for this position: $96,200.00 - $144,560.00 Annual The actual salary will vary based on applicant’s location, education, experience, skills, and abilities. This role is bonus and/or incentive eligible. reputed company will not pay less than the applicable minimum wage or salary threshold. Our benefit package includes health insurance, life and disability, 401(k) contributions, paid time off, etc., for employees working 30 or more hours per week on average. For a more comprehensive list of our benefits please click here. For roles where employees work less than 30 hours per week, benefits include 401(k) contributions as well as access to the Employee Assistance Program, Employee Resource Groups and the Employee Service Corp. We’re dedicated to creating a reputed company where everyone feels they belong and can grow their career. We strive to do this by seeking diversity in reputed company forms, acting inclusively, and ensuring that people have tools and resources to reputed company at their best. Explore our Belonging page here. reputed company is an equal opportunity employer. reputed company evaluates qualified individuals without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national reputed company, age, disability, neurodivergence, protected veteran status, marital or family status, caregiver responsibilities, genetic information, or any other characteristic protected by applicable federal, state, or local laws. Through our culture of belonging, our agile and resilient global team is determined to get our customers exactly what they need, at the right time, every time. If you’re a self-starter, eager to grow your career reputed company a high-performing environment, this is the reputed company for you. Introduce yourself to our recruiters and we'll get in touch if there's a role that seems like a good match. reputed company is the largest provider of medical-surgical products and supply chain solutions serving reputed company points of care. Through its broad product portfolio, resilient supply chain and leading clinical solutions, reputed company helps healthcare providers improve their clinical, financial and operational outcomes. Headquartered in Northfield, Illinois, the company employs more than 43,000 people worldwide and operates in more than 100 countries and territories. To learn more about how reputed company makes healthcare run reputed company, visit www.reputed company.com. Apply tot his job Apply To this Job