Senior Analyst, Information Security Compliance

About The Position

Requirements

• Exceptional communication skills with diverse audiences
• Strong critical thinking and analytical skills
• Precision in reviewing controls, control documentation, and audit evidence to ensure completeness and accuracy.
• Strong leadership, project, and team-building skills, including the ability to lead teams and drive projects and initiatives in multiple departments with limited supervision.
• Demonstrated ability to identify risks associated with business processes, operations, information security programs and technology projects.
• 7+ years of experience in a combination of information security and audit.
• Working knowledge in data analytics and programming (Python scripts etc.)
• Working knowledge/experience in compliance regulations such as SOX, Europe’s General Data Protection Regulation (GDPR) and California Consumer Protection Act (CCPA) and PCI DSS industry standards are required.
• Knowledge of AI governance principles, including responsible AI, data protection, and emerging regulatory considerations.
• Exceptional interpersonal skills, including teamwork and facilitation.
• Excellent written, verbal, communication, and presentation skills.
• Bachelor’s degree in a related field of study, or equivalent experience.

Nice To Haves

• Security certifications including CISA, CISM, CISSP, and GIAC is highly desired.
• Experience in a global retail environment is preferred.

Responsibilities

• Collaborate with compliance control owners to verify and validate Controls are effective and operational through planned and ad-hoc reviews.
• Collect and prepare evidence for regulatory audits and internal assessments across multiple brands.
• Analyze and validate evidence for accuracy and completeness in meeting control objectives and effectiveness.
• Maintain controls documentation and create new documentation as needed.
• Assist in identifying and implementing automation opportunities to proactively validate compliance.
• Provide key input into risk mitigation strategies and programs.
• Partner with IT business owners to ensure action plans are designed, implemented, and validated.
• Support periodic reviews and updates to information security policies, coordinating with IT, Legal, Auditing, and other business teams to collect content.
• Support IT risk, audit, and compliance reporting via consolidated dashboards to aid in executive management decision making process.

Benefits

• Comprehensive benefit package to fit your lifestyle.
• Competitive benefits program that provides choice and flexibility to meet your and your family’s needs – now and in the future.
• Resources to support your physical, emotional, social, and financial wellbeing.
• Discounts on our apparel.
• Four weeks of Paid Parental Leave to eligible employees who are new parents.
• Flexible Fridays.
• Tuition Reimbursement.
• Workplace culture centered on equitable opportunities and a sense of belonging for all team members.