GRC Compliance Consultant
GRC Compliance Consultant
The GRC Compliance Consultant will provide support and services for Avanade's enterprise-wide certification and compliance program. This position will be a key contributor to the development and establishment of the compliance program focusing on information security and data privacy regulations as well as the execution of continuous improvements to all aspects of the program. The major responsibilities of the Consultant are: development and implementation of process and procedure; assisting staff to identify and maintain control objectives; training staff on certification and compliance related topics and; support and assist with the implementation and maintenance of a GRC tool supporting the Compliance Framework.
Day to day functions of this role may include:
Actively contribute to information security policies & standards, control objectives and program investments to maintain compliance with regulatory, contractual and internal requirements.
Develop, communicate, and deploy information security processes and procedures.
Drive the identification and maintenance of information security and data privacy control objectives.
Assist with the management of information security and data privacy activities:
o Review and maintenance of current policies, control objectives and standards.
o Guide and measure stakeholder's ability to align and apply policies, control objectives and standards with regulatory, contractual and internal requirements.
o Understand Governance, Risk, and Compliance (GRC) methodologies and tools to support structured, traceable, and repeatable processes.
o Assist control owners in understanding and responding to audit and improvement areas identified.
o Responsible for contributing to the identification, analysis and assessment of information security and data privacy risk scenarios.
o Create and maintain Certification and Compliance metrics tracking compliance initiatives, control activities and alignment with policies, control objectives and standards.
o Train and mentor other team members to consistently deliver on the goals and objectives of the Compliance program.
Provide expertise and guidance around security and data privacy issues and recommend solutions to mitigate and eliminate compliance risks.
Ability to understand and interpret laws and regulatory requirements related to information protection and develop and implement appropriate processes to keep compliance and reduce legal liabilities.
You will likely have a Bachelor's Degree from an accredited institution, or compensating Military Experience.
You will have about 5 years of compliance, regulatory, or contracts experience.
You likely will have experience working with information security and data privacy regulations.
You will have excellent proficiency with the English language (written and verbal).
Take initiative delivering timely results and support multiple tasks and projects of varying scope and scale.
Ability to conduct effective root cause analysis and develop workable remediation strategies.
Willingness to share knowledge/expertise and assist others supporting common goals and strategies.
Ability to handle ambiguous situations and execute upon a direction.
Exhibit team building, team participation, and a growth mindset.
Presentation skills to various levels within an organization (from managers to executive/Leadership)
Proficiency with Microsoft Office (O365) products e.g. Word, Excel, PowerPoint, SharePoint, etc.
Qualifications you likely will have:
Working knowledge of international, national and industry specific information security and data privacy frameworks and standards.
Hold or willing to obtain industry recognized certification such as CISSP, CISA, CISM, etc.
Avanade leads in providing innovative digital services, business solutions and design-led experiences for its clients, delivered through the power of people and the Microsoft ecosystem. Our professionals combine technology, business and industry expertise to build and deploy solutions to realize results for clients and their customers. Avanade has 30,000 digitally connected people across 23 countries, bringing clients the best thinking through a collaborative culture that honors diversity and reflects the communities in which we operate. We welcome all and seek talented individuals who can bring their whole self to work, build inclusive teams and encourage diversity inside and outside the organization. Majority owned by Accenture, Avanade was founded in 2000 by Accenture LLP and Microsoft Corporation. Learn more at http://www.avanade.com/.
Avanade® Is An Equal Opportunity Employer. Avanade prohibits discrimination and harassment against any employee or applicant for employment because of race, color, age, religion, sex, national origin, gender identity or expression, sexual orientation, disability, veteran, military or marital status, genetic information or any other protected status.
Requisition ID - 55854
Avanade is the leading provider of innovative digital and cloud-enabling services, business solutions and design-led experiences, delivered through the power of people and the Microsoft ecosystem. Majority owned by Accenture, Avanade was founded in 2000 by Accenture LLP and Microsoft Corporation and has 30,000 professionals in 24 countries. Visit us at www.avanade.com.
Back to top