Compliance Analyst

vysokoškolské I. stupně
vysokoškolské II. stupně
postgraduální

Anglický jazyk - Středně pokročilý (B2)

Job Description:

The ACS IT Audit & Compliance organization has implemented a risk based, operationally excellent approach to IT Compliance. A key element to the success of this strategy is our IT Audit & Compliance Center of Expertise (COE).

The primary responsibilities of this position include:

* Implementation of Proactive Compliance through Site Risk Assessmens, Site Scorecards, and Site Awareness Programs
* Implementation and ongoing maintenance of remediation programs for Common Compliance Initiatives to include, Critical Application Patching, Web Site Vulnerability Management, Host Hardening, Cloud Solutioning, Data Loss Prevention
* Leading projects and programs from conception to implementation
* Deployment of policies, process and procedures to enable IT Compliance – Operational Excellence
* Compliance analytics in support of Site & Program - Corporate Technology Audits
* Analysis of data to identify risks and vulnerabilities, and recommend of remediation programs. Common tools and scripts including: Foundstone, SCCM, LEMSS, list out
* Support development of Compliance Training Material

Required Skills:

* Bachelor‘s degree Information Technology, or equivalent
* Self-starter, able to work with limited supervision. Work well with others
* Strong Business Partner and analytical skills. Ability to analyze and summarize technical information into a consistent report
* Ability to understand, interpret, and implement IT Policies, Procedures, and Controls
* Strong technical skillset - proven and demonstratable
* Lead root cause problem solving process, once issues/opportunities have been identified, to ascertain the best solution/improvement
* Gap analysis to assess policies, standards, controls linked to compliance issues
* Solid oral and written communication skills
* Negotiation and conflict resolution skills
* Ability to use English on a daily basis

Qualifications (required):

* Vulnerability assessment (network and application), encryption, virus/worm prevention, patch deployment, host hardening
* Previous security risk assessment and or IT audit experience
* Security administration of the UNIX or Windows operating systems
* TCP / IP, Internet/Intranet
* MS Office (Excell – skilled user)

Qualifications (optional):

* With industry standards: Sarbanes-Oxley, Federal Information Security Management Act of 2002 (FISMA), International Traffic in Arms Regulations (ITAR), Export Administration Regulations (EAR), and Payment Card Industry Data Security Standard (Mastercard/Visa)
* Network architecture, IT security devices and Firewall technologies, VPN, PKI, Intrusion Detection
* Web technologies and Cloud solutioning
* ITILv2/3

We offer:
*Unlimited full-time employment with opportunity to work with world class engineers
*Flexible working hours
*Daily contact with international team
*Wide range of company benefits

*Hereby, we would like to inform you that by submitting your resume and until its dismissal in writing (e-mail or letter), you consent to storage your personal data in the Honeywell internal database and to the processing of your personal data by Honeywell spol. s.r.o. for the recruitment purpose within the meaning of the Act No.101/2000 Coll. on personal data protection.