Compliance Manager

ลักษณะงาน

• Conduct regular audits and assessments of IT systems, processes, and controls to ensure compliance with applicable regulations (e.g., GDPR, HIPAA, SOX), industry standards (e.g., ISO 27001), and internal policies.
• Collaborate with cross-functional teams, including IT, legal, and security, to identify compliance requirements and develop strategies to address them effectively.
• Develop and maintain IT compliance frameworks, policies, and procedures, including risk assessments, control frameworks, and documentation standards.
• Provide guidance and support to IT teams on compliance-related matters, including security best practices, data protection measures, and incident response procedures.
• Stay abreast of emerging IT compliance trends, regulations, and technologies to proactively identify risks and opportunities for improvement.
• Assist in the planning and execution of compliance training programs for employees to enhance awareness and understanding of IT compliance requirements.
• Collaborate with external auditors and regulatory agencies during compliance audits and assessments, ensuring timely and accurate responses to inquiries and requests.
• Monitor and analyze IT compliance metrics and KPIs to track performance, identify trends, and recommend corrective actions as needed.
• Participate in the development and maintenance of business continuity and disaster recovery plans to ensure IT systems' resilience and availability in case of emergencies.
• Support the implementation of IT governance frameworks, such as COBIT or ITIL, to enhance organizational control and efficiency.

คุณสมบัติ

• Bachelor's degree in information technology, computer science, or a related field; relevant certifications (e.g., CISA, CISSP, CRISC) preferred.
• Proven experience (X years) in IT compliance, risk management, or audit roles, preferably in [industry/sector].
• Strong understanding of IT compliance frameworks, standards, and regulations, such as GDPR, HIPAA, SOX, ISO 27001, NIST, etc.
• Familiarity with IT governance principles and practices, including control frameworks (e.g., COBIT, ITIL).
• Excellent analytical, problem-solving, and communication skills, with the ability to collaborate effectively across teams and levels of the organization.
• Detail-oriented approach with a commitment to accuracy and compliance.
• Ability to adapt to changing priorities and work effectively in a fast-paced environment.
• Knowledge of relevant tools and technologies for IT compliance management and reporting.