Loading...
Share this Job

Senior Compliance Analyst, Cybersecurity

Location: 

Arlington, TX, US, 76011

Business Unit:  Corporate
Function:  Information Technology

Triumph Group designs, engineers, manufactures, repairs and overhauls a broad portfolio of aviation and industrial components, accessories, subassemblies, systems and aircraft structures. We partner with original equipment manufacturers (OEMs) and operators of commercial, regional, business and military aircraft worldwide, to provide products and services that solve their hardest problems. So whatever the part, component or complexity of assembly, Triumph is committed to quality, service and meeting the specialized needs of each customer.

Triumph participates at all levels of the aerospace supply chain – from single components, to complex systems, to aerospace structures and their contents. We provide solutions for the entire product life cycle of an aircraft – from raw material to aftermarket service. Our unique ability to integrate a broad range of products and capabilities is our competitive advantage.

Responsibilities

The Senior Compliance Analyst provides technical expertise and functional knowledge on systems and security applications.  As a member of the IT Team, the Senior Compliance Analyst is responsible for coordinating best-in-class compliance strategies to accomplish goals. The Senior Compliance Analyst will act as a liaison between audit and compliance teams, functional and development teams, third party hosting providers, provide ongoing IT and business support and is responsible for assisting with managing compliance systems and resources.

 

Position Requirements

  • Assist with architecting, development and management of IT and Security policies, practices and standards.
  • Analyze technical controls to ensure security and compliance requirements are met through the verification of documented policies and procedures and take corrective action where non-conformities are identified.
  • Provide support as required to requests for information for the IT Audit, SOX Controls testing, DFARS/CMMC Assessments, GDPR, Customer Audits, and other audit support.
  • Maintain professional skills, certifications, and competencies.
  • Advocate compliance with security policies, legal, regulatory and contractual requirements.
  • Identify and engage key stakeholders to ensure timely review and updates to process documentation and controls for new and/or existing processes, and in remediating compliance issues.
  • Perform walkthroughs of systems and processes and identify gaps in controls. Provide assistance in understanding methods of testing IT controls.
  • Schedule and conduct regular internal compliance checks. Assist to ensure remediation of critical compliance issues are prioritized, escalating as needed to meet compliance objectives.
  • Track and report findings from various IT audits to completion of remediation efforts.
  • Complete risk assessments for IT Security Policies and Procedures, performing the initial review, in depth analysis of mitigating controls and risk, and documenting the risk in an executive summary format.
  • Establish and manage compliance project plans and escalations, issue/resolution processes, and requirements prioritization process
  • Regularly audit company policies and procedures, practices to identify possible weaknesses or risk.  Assist IT teams in updating or creating new documentation.
  • Assist the Security & Compliance Team with security awareness, security and risk assessments, 3rd party vendor assessments, and communication initiatives
  • Manage efforts and communicate timely status updates (both verbal and written) to team members and management
  • Work with IT and business teams for project support activities.
  • Work within a service desk ticket system to manage day to day activities.
  • Assist with security metrics and reporting.

#LI-KD1

Qualifications

•    6+ years’ experience with companies that have successfully used IT as a business lever in driving optimization and change
•    Demonstrate leadership skills, the importance of good decision making, strategic discipline through example, and working independently
•    Ability to achieve an IT Security Certification and/or and prior experience with a global security and compliance team (Certified Information Systems Security Professional (CISSP), or Certified Information Systems Auditor (CISA) preferred)
•    Understands security regulations and has prior work experience in a highly regulated industry
•    Bachelor’s degree in Math, Computer Science or related field with a minimum of 6 years of IT experience (with a minimum of 4 years of IT compliance experience)
•    Technical skills range from oversight of ERP security, GRC solutions, password synchronization, identity & access management tools, and management of data loss protection technologies
•    Proven experience with managing IT audit process and deliverables
•    Knowledge of NIST, CMMC, ISO, SOC2, COBIT, SOX, ITIL, Privacy Acts, and other IT compliance frameworks
•    Extensive experience with IT security technologies including GRC, vulnerability management, security assessments, DLP, Windows/Active Directory administration and monitoring
•    Strong analytical, problem solving, and attention to detail capabilities
•    Ability to help others in the organization with security and compliance knowledge at a level of understanding appropriate to their job function
•    Excellent oral/written communications, organizational, teamwork, and interpersonal skills
•    Ability to multi-task in a dynamic, fast-paced environment
•    Demonstrate outstanding level of professionalism, including ability to exercise good judgment, discretion, tact, and diplomacy
•    Ability to analyze situations, identify existing or potential problems and recommend solutions
•    Drive and resourcefulness in making contributions both inside and outside areas of specifically assigned responsibilities
•    Ability to work independently under consultative direction only
•    May require infrequent periodic travel to plant and facility locations

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or disability. Please contact us if you require assistance in applying for Triumph Group and we will provide reasonable accommodations via HRDepartment@triumphgroup.com. If you’d like more information on your EEO rights under the law, please click here


Nearest Major Market: Arlington Texas
Nearest Secondary Market: Dallas