IT Compliance Director

ABOUT THE ROLE
Lead and manage the IT compliance program in collaboration with the Company's Internal Control group. This role will be the point person for the development and execution of the IT Sox program for the organization and will report to the Corporate CIO with a dotted line to the head of Internal Controls.

WHAT YOU'LL BE DOING

• Develop, implement, and sustain IT policies and procedures to ensure compliance with SOX, company Info Sec Policy, and General Computer Controls
• Ensure accuracy, completeness, and effectiveness, of the organization's IT controls including those related to financial reporting, system development, and data integrity
• Collaborate with other departments such as finance and accounting, internal controls, and the shared service group to ensure that IT controls align with overall company goals.
• Communicate with internal and external auditors, internal control personnel during audits and providing any necessary documentation or information
• Lead and mentor the IT compliance team to ensure effectiveness of the team
• Other responsibilities as assigned. 

WHAT WE ARE LOOKING FOR

Education: Bachelor's degree
Additional Education Preferred: Master's degree
Field of Study Preferred: Computer Information Systems

Required Work Experience:

• 10+ years experience working in Information Security with specific knowledge of SOX IT compliance.
• Experience leading all aspects of Security Governance, Risk, and Compliance (GRC) across the Enterprise
• Experience working with both internal and external auditors, ownership of project plans, ability to interpret audit findings to ensure proper remediation efforts are being put in place, provide oversight of sustainment efforts post remediation leveraging agreed-upon KPI’s and visual management
• Experience in SOX IT controls testing
• Knowledge and experience implementing NIST CSF, ISO27001 and/or similar information security frameworks.
• Previous experience developing policies, performing security risk assessments, designing technical/administrative controls, and managing risk mitigation plans.

Required Training/Certifications: CISSP, CISM, or similar certifications preferred

Required Computer and Software Skills: Microsoft Office suite
Travel Requirements: Travel within North America & Medellin, Columbia as necessary

Additional Requirements:

• Teamwork/Collaboration in a matrix global organization
• Skilled in identifying and following up on tasks, owners and actions – strong project management skills.
• Demonstrate a commitment to communicating, improving and adhering to health, safety and environmental policies in all work environments and areas. Promote a culture of safety and exhibit these behaviors.
• Successful candidates must adhere to all safety protocols and proper use of Holcim approved Personal Protection Equipment ("PPE"), including but not limited to respirators. Subject to applicable law, employees that are required to wear respirators must be clean shaven where the respirator seal meets the face in order to pass the qualitative and quantitative fit tests.

WHAT WE OFFER

• Competitive salary
• Retirement Savings: Choose from 401(k) pre-tax and/or Roth after-tax savings
• Medical, Dental, Disability and Life Insurance 
• Holistic Health & Well-being programs
• Health Savings Accounts (HSAs) & Flexible Spending Accounts (FSAs) for health and dependent care
• Vision and other Voluntary benefits and discounts
• Paid time off & paid holidays
• Paid Parental Leave (maternity & paternity)
• Educational Assistance Program
• Dress for your day