VP - IT Compliance & Assurance - BPO

What are the minimum prior qualifications to be an applicant for this role-

- At least 12 years of experience across Information Security, IT Compliance, IT Risk Management, IT GRC

- Strong competency in knowledge and implementation / compliance experience across multiple global information security related regulations e.g. PCI, HIPAA, SOX, HITRUST, SSAE 16 etc as well as standards such as ISO 27001

- Knowledge / familiarity across broader information security and IT risk management domains and ability to integrate compliance, security and IT risk requirements

- Excellent communication and interpersonal skills. Ability to manage senior stakeholders e.g. auditors, regulators, business leaders.

- Global experience strongly preferred. Ability to work seamless with a number of functions across geographical boundaries

Key Roles and Responsibilities-

Ongoing assessment and proactive readiness assessments for applicability of IT compliance related laws and regulations

- Ensuring Company has a robust framework for compliance with relevant information security and related regulations as applicable e.g. HIPAA, SOX, PCI etc

- Working closely with Data Privacy and Internal Audit groups to ensure seamless integration of compliance initiatives lead by them e.g. Data Privacy compliance, ISAE audits etc

- Work closely with the IT GRC group and other information security leaders to ensure a tightly integrated and seamless framework is in place and operational. Ensure that for all information security initiatives, IT compliance aspects are proactively thought through and integrated.

- Lead all interactions with audits- clients, external audits and regulators, from an Information Security and IT Compliance perspective, thus being the face of the organization for this critical function.

Knowledge, Experience and Education-

Essential

- Expertise in IT Compliance

- Sound knowledge various compliance and security processes and technologies

- Good overall understanding of implementing controls in a large scale organization

- Industry certifications like CIA, CISA or CISSP

- Ability to interact with CXO level internally and externally

- Risk analysis, problem solving,

- Strong presentation skills and written and verbal communication skills

- Strong Program Management Skills

Desirable

- Hands on exposure to security technologies

- Quality and Process Improvement skills / and related Quality certifications