Infromation Security Compliance Analyst (Analyst I, IM Security) - Germantown, Maryland
As a member of the corporate team, you’ll focus on enhancing the relationship with our clients as we provide outstanding business solution services. Within departments like Accounting & Finance, Human Resources, and Engineering, Conduent is actively staffing all teams with roles like Recovery Analyst, Client Services Specialist, and Senior Management Consultant. At Conduent, we give our employees the opportunity to further develop their career skills with the intention of growing them into leaders within the organization.
- Full Time
- Professional Development Opportunities
What will make you successful at Conduent?
Check out the traits we’re looking for and see if you have the right mix.
- Adaptable 9
- Detail-Oriented 9
- Multi-Tasker 8
- Strategic 10
- Expressive Presenter 6
- Conceptual 4
Conduent is proud to offer comprehensive and competitive benefits that reflect the value of our employees. Benefits will differ by country, please contact your recruiter for details specific to your location.
Maintaining a work/life balance is the key to success.
Department learning opportunities and company-wide digital knowledge share.
Additional resources to support employees with families.
Conduent offers programs to help advance the careers of our employees.
We manage interactions with patients and the insured for a significant portion of the U.S. healthcare industry. We are the customer interface for large segments of the technology industry and the operational and processing partner of choice for public transportation systems around the world.
Whether it's digital payments, claims processing, benefit administration, automated tolling, customer care or distributed learning - Conduent manages and modernizes these interactions to create value for both our clients and their constituents. Learn more at www.conduent.com.
Conduent is a business services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Compliance Analyst who has experience evaluating the security and compliance posture of information systems environment. The Compliance Monitoring Center (CMC) focuses on helping the organization look deeper and see further into the security of the environment to help improve and embed controls across the company. The CMC will be responsible for evaluating evidence by combining advanced data analysis and technology tools to offer our clients a sustainable yet high quality and efficient approach to managing their compliance. This Compliance Analyst will be responsible for monitoring the controls environment across the organization against a standard predefined framework.
Monitor security controls against the Center for Internet Security (CIS) control framework to ensure compliance.
Perform targeted security compliance analysis and reporting by analyzing collecting, analyzing and summarizing information and produce accurate and reliable information for decision making and to support compliance monitoring activities.
Assist with preparation and updating of evidence collection and compliance monitoring evaluation criteria as necessary.
Assist in monitoring progress of outstanding issues to ensure corrective actions are implemented to cure compliance violations or deficiencies.
Assist with the implementation of security controls when compliance issues are identified, if needed.
Assist with preparing and distributing periodic reporting. Assist in providing status updates on open compliance issues, assist in conducting investigations and ensure outstanding issues have been resolved in order to close all issues by the stated deadlines.
Assist other security operations teams with additional tasks which may include but is not limited to:
Assist with the maintenance of the standard procedures for the administration, backup, disaster recovery, and operation of the systems infrastructure.
Assist with the maintenance of the technical architecture of the infrastructure systems, along with ensuring all components perform as expected to meet established service-level objectives for system uptime.
Assist in the performance routine equipment checks and preventative maintenance. Maintain up-to-date documentation of designs and configurations. Be responsible for new, policy and security compliance testing.
Assist with the maintenance of hardware or software revisions, applicable content, security patches, hardening, and documentation.
Assist with the deployment of content (policies, signatures, or rules) for the security infrastructure. Coordinate and conduct event collection, log management, event management, and compliance automation.
Assist in the response to day-to-day security change requests related to security operations.
Assist with the performance of collateral duties and responsibilities for Audit Support of the infrastructure.
Assist with any other duties as assigned by Conduent management.
3+ years of related experience within professional services, compliance monitoring, risk management, or IT internal/external audit.
Experience in IT controls monitoring for regulatory and compliance requirements like CIS, SOX, HIPAA, HITRUST, SSAE 16 - SOC 1 & SOC 2, PCI compliance – PCI DSS / PA-DSS, NIST, ISO 27001 & ISO 27002.
Understanding of business processes, internal control risk management, IT controls and related standards.
Experience in PowerPoint, Word, Excel; experience with Visio and MS Project.
Communication skills (interpersonal, verbal, presentation written, email). Experience to write report segments and to participate in presentations.
Familiarity with security, workflow and collaboration tools such Nessus Tenable, Splunk, Eracent, NNT, SharePoint and ServiceNow (Snow) is a plus.
Positive attitude, team player, self-starter; takes initiative, ability to work independently and effectively with all levels of staff and management both internally and externally.
Flexibility to travel up to 20% or as required.
B.S. in Accounting Information Systems, Management Information Systems or Computer Science or related field at a minimum is required.
IT Security Certifications such as CIPP (Certified Information Privacy Professional), CRISC (Certified in Risk and Information Systems Control), CISA (Certified Information System Auditor), CISSP (Certified Information Security Professional) or CISM (Certified Information Systems Manager) is a strong plus.
The Conduent difference
We’re the world’s largest business process services company — and we’re modernizing the constituent experience.Learn More
We improve moments in millions of lives in a variety of industry sectors.Learn More
We celebrate new ideas and turn them into unique customer value.Learn More