Thursday, 29 August 2013

Job Title: Program Manager, IT Hosting Audit and Compliance

Posted by Unknown on 06:32 with No comments

Job ID: 20001282
Job: Consulting
Location: US-NC-Cary
Organization: SAS Institute Inc.
Deadline:  Oct 14, 2013, 6:59:00 AM
* Classification Full-time

Description

As an Audit & Compliance Specialist you will help ensure that staff working on SAS Solutions On Demand projects operate within the policies and procedures set forth by SAS Solutions On Demand as well as company, state, federal, and international laws. A focus will be made on security and hosting operations-related activities.
       
Your responsibilities will include:
       
  • Help maintain the Quality Management System, including policy and process development and updates, while ensuring compliance with regulatory regulations and guidances.
  • Research and recommend changes to enhance or streamline quality and information security procedures, including security testing (vulnerability and penetration testing), risk assessment, security incident management, and auditing.
  • Assist with internal inspections and benchmarking of security policies against best practices and standards, which may include ISO 27001, PCI, FISMA, IRS 1075, and NIST 800-53.
  • Analyze projects and participate in definition of validation strategies, ensuring compliance to regulatory requirements, including FDA CFR 21 Part 11.
  • Effectively communicate, facilitate, present, and train both technical and non-technical (large) audiences, regarding quality and security requirements and procedures.
  • Coordinate response to reported security violations and issues.
  • Complete compliance, quality, and security areas for RFP and security questionnaires.
  • Review hosting, security, and audit contract terms, and ensure compliance to current policies.
  • Interface with customer auditors to discuss security or IT hosting operations-related concerns during pre and post sales activities.
  • Help coordinate customer audit activities, including coordination with other SAS divisions.
  • Document and manage audit findings, responses, and remediation activities resulting from customer, supplier, and internal audits.
  • Assist with analysis, documentation, and training of remediation actions in response to audit findings. Focus is on pharmaceutical, banking and insurance industry requirements.
  • Coordinate and assist with Continuity of Business/Business Resumption activities, including BR Plan maintenance, testing, and/or Business Impact Analysis (BIA).
  • Assist with ongoing management of SAS Solutions OnDemand’s partners and third-party suppliers, including onsite audit planning, execution, and reporting, as appropriate.
  • Manage third-party software licensing inventory and reporting; assist with licensing discussions with other SAS divisions, including legal, client support software and finance.
  • Must have the ability to work with little supervision, escalating issues, as appropriate.
Perform other duties, as assigned.

Qualifications


Essential 
  • Bachelor's degree in Business, Computer Science  or related  field
  • At least 5 years of experience in project management, management consulting, IT, or audit/compliance.
  • 1-2  years of experience in a regulated (pharmaceutical, banking, insurance) industry
  • Understanding of best practices for information security and data privacy
  • Understanding of regulatory standards:  PCI,  FISMA, or IRS 1075
  • Knowledge and experience with best practices /standards: ITIL, GAMP5, or ISO 27001 
  • Knowledge of IT or quality auditor procedures and tools (not financial/accounting)
Essential Equivalent (Education)
  • Associate's degree plus 8-10  years of the stated essential requirements; ~OR~
  • High School (GED) diploma plus 10-12 years of the stated essential requirements 
Additional / Preferences
  • 8 years of experience in project management, management consulting, IT, or audit/compliance
  • Auditor certification, such as CISA or CQA, or equivalent professional training
  • SAS software implementation experience or prior implementation experience
  • IT hosting experience
  • Travel as business requirements dictate at management discretion 
Additional Information

To qualify, applicants must be legally authorized to work in the United States, and should not require, now or in the future, sponsorship for employment visa status.
 The level of this position will be determined based on the applicant's education, skills and experience.
 Resumes may be considered in the order they are received.
 SAS is an Equal Opportunity/Affirmative Action Employer M/F/D/V
 SAS employees performing certain job functions may require access to technology or software subject to export or import regulations. To comply with these regulations, SAS may obtain nationality or citizenship information from applicants for employment. SAS collects this information solely for trade law compliance purposes and does not use it to discriminate unfairly in the hiring process.

 See more: http://www.sas.com/jobs/USjobs/search.html

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Popular Posts

Recent Posts

Sample Text

Categories

Blog Archive

Powered by Blogger.