IT Compliance Auditor

Company: CPI Card Group
Location: Castle Rock
Posted on: September 4, 2021

Job Description:

CPI Card Group is searching for a dynamic, detailed oriented, self-starting IT Compliance Manager to join our amazing team in a new role. The ideal candidate is someone who enjoys working in a fast-paced environment and is responsible for ensuring IT activities are within the guidelines, regulations and ethical expectations of CPI. This is a key hands-on role in helping to analyze and establish internal IT business processes and operations in conjunction to ensure compliance with industry regulations and ethical standards.

• Analyze internal business processes and operation in conjunction with IT systems to ensure compliance with industry regulations and ethical standards
• Create, modify, update and implement company policies and procedures
• Act as the main IT compliance contact point, assist and collaborate with internal and external audit teams where IT systems and processes are in scope, inclusive of responding to/collecting documentation to support requests for information and facilitating remediation strategies and the development of controls for areas of weakness and/or issues noted
• Continuously monitor the environment for control gaps, making recommendations for improving compliance and regulatory related processes and/or procedures as it pertains to the IT organization, systems, applications, and processes
• Ensure controls are designed and operating effectively by performing periodic internal reviews or audits and taking necessary action to remediate any issues or gaps noted
• Develop risk management and mitigation strategies
• Develop a methodology and strategy for collecting and maintaining documentation/evidence to support internal and external audits such that the processes are repeatable and support IPE (information provided by entity) standards
• Partner with IT Leaders, Cyber Security team, Internal Audit and Legal and Compliance team to ensure all business and systems operations are in line with policies and regulations
• Design ongoing training programs for employees within the business and IT as necessary
• Prepare report on compliance, dashboard and/or metrics to provide senior management a view of the compliance landscape
• Evaluate upcoming regulations and industry standard changes, as well as best practices in compliance control and work with stakeholders to manage change
• Evaluate efficiency of controls and continuously improve them
• Work with CPI staff to answer customer RFI questionnaires related IT Security and compliance

• Bachelor’s degree preferred. Related experience may be a substitute for education.
• Understanding of internal control frameworks such as NIST, COBIT, GTAG
• Proven experience as a compliance manager in IT in a similarly sized organization.
• Experience working in a highly regulated environment with standards such as PCI DSS, SOC 1 & 2, Sarbanes Oxley
• Excellent knowledge of reporting procedure and record keeping
• Knowledge or experience in IT industry auditing techniques
• Minimum of 5-10 years of experience. Experience working in Fintech companies, manufacturing, or payments providers is a plus.
• Understanding of Sarbanes Oxley, PCI, and various SOC reporting requirements.
• Extensive knowledge of information systems terminology, concepts, and practices, including but not limited to data security standards, client server and cloud-based implementations, emerging technologies, databases, ERP systems, system development methodologies, information security, disaster recovery, operating systems, general IT controls, and remote access techniques.
• Able to present audit observations in a conversational format across all levels of management, including executive leadership.
• Demonstrated ability to recognize and respond to diverse thinking and learning styles.
• Excellent verbal and written communications, with the demonstrated ability to adjust messaging accordingly based on the audience being addressed.
• Excellent analytical skills and ability to solve problems
• Methodical and diligent with planning activities
• Desire to assist with evolving the organization, introducing and implementing innovative and efficiency-driven practices

Certification as a CISA, CISM, CISSP or equivalent preferred

This role requires the ability to work from home in a virtual environment, where the following is required;
• reliable high-speed internet access (hotspot not acceptable)
• dedicated distraction-free home work environment

Company Overview:
CPI Card Group® is a payment technology company and leading provider of credit, debit and prepaid solutions delivered physically, digitally and on-demand. CPI helps our customers foster connections and build their brands through innovative and reliable solutions, including financial payment cards, personalization and fulfillment, and Software-as-a-Service (SaaS) instant issuance. CPI has more than 20 years of experience in the payments market and is a trusted partner to financial institutions and payments services providers. Serving customers from locations throughout the United States, CPI has a large network of high security facilities, each of which is certified by one or more of the payment brands: Visa, Mastercard®, American Express and Discover®. Learn more at www.cpicardgroup.com.

The health and safety of our employees continues to be a top priority at CPI Card Group as we face the challenges associated with the COVID-19 pandemic. Across our production and fulfillment facilities we have implemented procedures such as enhanced cleaning, daily temperature checks, social distancing measures, and required face masks for all individuals onsite in our facilities. We also continue to monitor federal, state and local health and safety guidelines and requirements to adjust our procedures as necessary. These are just a few examples of our commitment to the safety and health of our workplaces.

Benefits
Competitive pay rates and an inclusive, empowering and rewarding culture.
Solid benefits package including Medical, Dental, Vision, Long Term Disability, Short Term Disability, Life Insurance, Accident Insurance, Critical Illness Insurance, FSA, HSA, Vacation and Holiday Pay, Tuition Reimbursement and 401K with a competitive company match percentage.

CPI is an EEO Employer. A complete background including drug screen is contingent upon hire

Keywords: CPI Card Group, Castle Rock , IT Compliance Auditor, Other , Castle Rock, Colorado