GRC Audit and Compliance Team Lead

Knowledge (includes but is not limited to):

• Extensive knowledge of audit and compliance methodologies.
• In-depth knowledge of SOC audit reports.
• In-depth knowledge of information security best practices and frameworks, including NIST Special Publications and Cyber Security Framework, CIS Controls, and the ISO/IEC 27000 series.
• General knowledge of risk assessment methodologies.
• General knowledge of laws and regulations related to information security and relevant to the company, such as the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). 
• General knowledge in developing, implementing, and managing automated systems and tools for audit and compliance purposes.
• General knowledge of Agile Project Management methodologies.
• General knowledge of using collaborative tools, such as Smartsheet and ServiceNow.

Education and Experience (includes but is not limited to):

• Possess a bachelor’s degree in Cybersecurity, Computer Information Systems, Information Technology, or related discipline and at least 2 years of experience in InfoSec Audit and Compliance; or 4-6 years of experience leading Information Technology or Cybersecurity audit and compliance efforts.
  • Relevant industry standard certifications are preferred. 

Skills (includes but is not limited to):

• Demonstrate professional skepticism to ensure evidence is sufficient when assessing the relevant information security controls. 
• Demonstrate an understanding of business processes, risk management and information security strategies, IT controls, and how they interact together. 
• Demonstrate proficiency in process formulation and improvement. 
• Excellent verbal and written communication skills.  Able to communicate persuasively and influence others.  
• Ability to lead and manage multiple audits simultaneously.
• Strong attention to detail, analytical, and statistical skills.

The well-being of WWT employees is essential. So, when it comes to our benefits package, WWT has one of the best. We offer the following benefits to all full-time employees:

• Health and Wellbeing: Health, Dental, and Vision Care, Onsite Health Centers, Employee Assistance Program, Wellness program
• Financial Benefits: Competitive pay, Profit Sharing, 401k Plan with Company Matching, Life and Disability Insurance, Tuition Reimbursement
• Paid Time Off: PTO & Holidays, Parental Leave, Sick Leave, Military Leave, Bereavement
• Additional Perks: Nursing Mothers Benefits, Voluntary Legal, Pet Insurance, Employee Discount Program

World Wide Technology is an Equal Opportunity Employer. We strive to create an environment where all employees are empowered to succeed based on their skills, performance, and dedication. Our goal is to cultivate a culture of belonging that encourages innovation, collaboration, and respect for all team members, ensuring that WWT remains a great place to work for All!

#LI-REMOTE

#LI-MP1

Why WWT? 

At World Wide Technology, we work together to make a new world happen. Our important work benefits our clients and partners as much as it does our people and communities across the globe. WWT is dedicated to achieving its mission of creating a profitable growth company that is also a Great Place to Work for All. We achieve this through our world-class culture, generous benefits, and by delivering cutting-edge technology solutions for our clients.

Founded in 1990, WWT is a global technology solutions provider leading the AI and Digital Revolution. WWT combines the power of strategy, execution, and partnership to accelerate digital transformational outcomes for organizations around the globe. Through its Advanced Technology Center, a collaborative ecosystem of the world's most advanced hardware and software solutions, WWT helps clients and partners conceptualize, test, and validate innovative technology solutions for the best business outcomes and then deploys them at scale through its global warehousing, distribution, and integration capabilities.

With over 12,000 employees across WWT and Softchoice and more than 60 locations around the world, WWT's culture, built on a set of core values and established leadership philosophies, has been recognized 14 years in a row by Fortune and Great Place to Work® for its unique blend of determination, innovation and creating a great place to work for all.

 Want to work with highly motivated individuals on high-performance teams? Join WWT today!

What will you be doing?

Within InfoSec, the GRC Audit and Compliance Team Lead is a skilled leader with expertise in audit and compliance methodologies. They manage and lead the team responsible for these activities within the organization. The leader thrives in a fast-paced, dynamic environment and adapts to change. They integrate people, processes, and technologies, solve problems, and provide effective consultation, with strong domain competency in InfoSec Audit and Compliance. 

Responsibilities

Leadership

• Oversee the InfoSec GRC Audit and Compliance team, ensuring that all team members are aligned with departmental goals and objectives.
• Manage competing priorities and adjust to changing business needs.
• Communicate departmental goals and align team members to ensure goals are achieved.
• Motivate team members and assess performance.
• Provide mentorship and guidance to team members to help them grow in their roles 
• Collaborate with InfoSec leadership to set the strategic direction of the InfoSec Audit and Compliance program.
• Develop, foster, and maintain a cohesive partnership with management, audit team members, and relevant stakeholders throughout the company.
• Work closely with other departments and stakeholders to ensure that audit and compliance activities are integrated into the overall business strategy. Build and maintain strong relationships with key stakeholders. 

InfoSec Audit and Compliance

• Lead the planning and execution of System and Organization Controls (SOC) audits, Financial Audit IT (FAIT), Cybersecurity Maturity Model Certification (CMMC), and other initiatives.
• Lead the development and implementation of automated systems and tools to streamline audit processes, enhance efficiency, and improve data accuracy. 
• Plan and oversee assigned audit and compliance initiatives according to established standards.
• Prepare and maintain team release plans that depict audit schedules and communicate schedules to relevant stakeholders in timely manner.
• Review audit findings and prepare formal audit reports with recommendations.
• Develop recommendations to improve the effectiveness and quality of audit and compliance deliverables.
• Acquire and implement various audit and compliance management tools to meet established standards most effectively and efficiently.
• Proactively educate and provide awareness related to the audit and compliance program to relevant stakeholders.