Senior Compliance Assessor

Role: Senior Compliance Assessor Location: Hybrid - Onsite twice per week in Charlotte Duration: 4 months, contract to hire Overview of project/skills required: Must have 2-3 years of experience in a Lead Assessor role in the banking/financial industry It is very important that the resource has NIST CSF experience and great soft skills This resource must have great communication skills, as they will be presenting findings and recommendations/actions from the SVP level to the SME (Data Analyst) level. This is currently a team of 5 (3 Data Analysts, AVP and this role). The team is assessing the entire organization (over 10k staff), with over 1000 pieces of evidence in each assessment cycle, and over 300 controls that they are looking at. Should have experience with Maturity Assessments. The Senior Compliance Assessor is responsible for compliance assessments as part of a larger team. Responsible for conducting independent comprehensive assessments of management, operational, and technical security controls and control enhancements employed within or inherited by a system to determine its overall effectiveness. Evaluates the effectiveness of control design and operation to meet compliance requirements. Performs or facilitates various assessments based on banking requirements and security controls (NIST CSF, FFIEC, OCC, EUBA, OSFI, and NIST-CRI). Communicates assessment observations with stakeholders to confirm understanding. Prepares draft reporting inclusive of assessments, summaries, findings, and recommendations for management review. Performs compliance reviews at the request of management for updates to business processes or new initiatives. Skills and Experience Demonstrate comprehensive familiarity with security controls, control implementation, assessment process and control maturity. Proven track record of successfully leading security and compliance initiatives at a project level. Strong analytical skills and ability to assess complex problems and translate them into actionable strategies. Excellent communication and interpersonal skills, with the ability to collaborate at all organizational levels. Two to Three years' experience in a lead assessor role using NIST Cyber Security Control Framework. Deep understanding of evaluation and validation principles and practices Ideal candidate industry certifications; CISA, CRISC, CISM, QSA

Created: 2024-11-05