Information Security Compliance and Audit Analyst

Ingram MicroIrvine, CA
93d$93,000 - $158,100
Match Resume

About The Position

Accelerate your career. Join the organization that's driving the world's technology and shape the future. Ingram Micro is a leading technology company for the global information technology ecosystem. With the ability to reach nearly 90% of the global population, we play a vital role in the worldwide IT sales channel, bringing products and services from technology manufacturers and cloud providers to business-to-business technology experts. Our market reach, diverse solutions and services portfolio, and digital platform Ingram Micro Xvantage™ set us apart. Learn more at www.ingrammicro.com Come join our team where you’ll make technology happen in surprising ways. Let’s shape tomorrow - it’ll be a fun journey! This position is based in our Irvine, California Corporate Headquarters with the opportunity to work up to two days remote per week. The Information Security Compliance & Audit Analyst will report to our Sr Manager of Quality and will be part of the OpEx compliance team. The Analyst will support global activities as they relate to ISO27001, ISO9001 and ISO14001. You will be responsible for providing subject matter expertise in ISO27001 Information Security regarding compliance requirements. In addition, implementing, maintaining and improving the Information Security Management System at a corporate level for Ingram Micro facilities across North and Central America.

Requirements

  • Bachelor’s degree in computer science, engineering, or related science and math discipline with an information security or business emphasis is required.
  • A minimum of 5 years of experience with IS compliance projects (specifically ISO27001).
  • Understands key security concepts such as access management, vulnerability and patch management, security information event management, and encryption.
  • Strong understanding of TCP/IP and other network protocols.
  • Understanding of the basic audit best practices, standards and methodologies.
  • Ability to formulate detailed technical documentation preferred.
  • ASQ Certified Engineer, Auditor or OE Managers preferred.
  • Experience using SharePoint, MS Excel, Word, PowerPoint and Visio.
  • Must possess a valid passport and be legally allowed to leave and return to originating country.

Responsibilities

  • Manage and Support IT compliance activities for regional information security support of ISO27001 auditing, reporting and remediation where appropriate.
  • Coordinate and communicate IT compliance activities to align with Global Information Security leadership in support and improvement of ISO27001 management system.
  • Ensure regional Information Security compliance to Information security standards (ISO27001) requirements.
  • Plan and conduct complex IS and integrated audit/compliance projects, including preparation of an objective risk-based assessment and an effective audit/compliance approach.
  • Leads and/or participates on audit/compliance activities of various locations and departments for compliance with plans, policies and procedures.
  • Execute operational activities to support IS audit and compliance activities including technical validation processes.
  • Execute collection of evidence to support compliance status.
  • Provide and present reporting including monthly metric delivery.
  • Manage escalation and enforcement for unresolved noncompliance issues.
  • Manage and Support External Audit activities and reporting.
  • Work with Information Security staff to ensure tools and reporting mechanisms are satisfactorily meeting statutory objectives.
  • Support compliance and security validation of all 3rd party IT providers.
  • Maintain strong working relationships with internal and external support teams including Global, Regional and Country Information Security associates.
  • Work on special projects as required by management.
  • Stay abreast of changes within the Information Security compliance areas including business change requirements and regulatory changes from an international perspective.
  • Support and enforce Information Security Policy, Standards, and Guidelines for business operations and technology implementations.
  • Work as the Subject Matter Expert (SME) on assigned projects and offers council regarding the intent of Compliance requirements.

Benefits

  • Healthcare benefits
  • Paid time off
  • Parental leave
  • 401(k) plan and company match
  • Short-term and long-term disability coverage
  • Basic life insurance
  • Wellbeing benefits

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Education Level

Bachelor's degree

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service