Senior Information Security Compliance Analyst

📋 Description

• • As a Senior Information Security Compliance Analyst at Motorola Solutions, you will play a pivotal role in safeguarding our organization's information assets and ensuring adherence to a complex web of regulatory, statutory, and contractual obligations. This position is central to our mission of building and connecting technologies that keep people safer everywhere, by ensuring our security posture is robust and compliant with global standards.
• • You will be instrumental in developing, implementing, and maintaining comprehensive information security policies, standards, and guidelines. This involves a deep dive into various compliance frameworks, including but not limited to GDPR, HIPAA, CCPA/CPRA, ISO 27001, SOC 2, NIST CSF, and PCI DSS, ensuring our operations align with these critical benchmarks.
• • A significant part of your responsibility will be to conduct rigorous and regular audits and assessments. These evaluations are designed to proactively identify any compliance gaps, vulnerabilities, or areas of non-adherence, allowing for timely remediation and continuous improvement of our security controls.
• • The role demands an exceptionally detail-oriented and meticulous approach to work, with a strong emphasis on accuracy and completeness in all documentation, assessments, and reporting. Your ability to be resourceful, results-driven, and adept at managing time and priorities will be crucial for success.
• • You will serve as a key point of contact for managing both customer and internal/external stakeholder security inquiries. This includes effectively triaging incoming requests, providing accurate and timely responses, and meticulously tracking all inquiries through to their successful remediation.
• • Leading comprehensive risk assessments will be a core function, where you will evaluate potential security threats, analyze vulnerabilities, and develop strategies to mitigate identified risks. This requires a proactive and analytical mindset to anticipate and address emerging security challenges.
• • Collaboration is key in this role. You will work closely with cross-functional teams across the organization to implement effective remediation plans for identified compliance gaps and to foster a culture of security awareness and risk reduction.
• • You will be responsible for meticulously tracking and managing risk exceptions, ensuring that all exceptions are appropriately documented, justified, and approved according to established policies and procedures.
• • Acting as the primary liaison for all internal and external audits is a critical aspect of this position. This includes managing interactions with regulatory bodies, clients conducting security assessments, and third-party auditors, ensuring a smooth and transparent audit process.
• • You will be tasked with preparing and presenting compelling evidence to demonstrate the organization's compliance with applicable standards and requirements, effectively communicating our security posture to various stakeholders.
• • A vital responsibility is to monitor and diligently track the completion of all audit findings and corrective actions, ensuring that remediation efforts are implemented effectively and on schedule.
• • Staying ahead of the curve is paramount. You will proactively keep abreast of the latest changes in regulatory and compliance requirements, as well as emerging industry trends and best practices in information security.
• • You will be empowered to anticipate, recommend, and implement improvements to our existing compliance program, ensuring it remains effective and relevant in the face of evolving risks and business needs.
• • Participation in the development and enhancement of security and compliance tools, processes, and frameworks will be encouraged, contributing to the overall maturity of our information security function.
• • This role requires a self-starter with excellent analytical and critical thinking skills, coupled with a strong understanding of compliance frameworks and risk management principles. The ability to communicate complex security concepts clearly and effectively to both technical and non-technical audiences is essential.
• • You will be expected to perform your daily duties with a high degree of autonomy and minimal supervision, maintaining a consistently high level of due diligence and professional integrity throughout your work.
• • The role offers a unique opportunity to contribute significantly to Motorola Solutions' commitment to safety and security, impacting the way we protect people, property, and places through innovative technology and robust compliance practices.