IT Security & Compliance Manager

Five Star Call Centers is seeking a Security and Compliance Manager who would be primarily responsible for facilitating and managing our 3 rd party security audits while also leading our organization’s security program to meet compliance standards and limit overall risk.

Five Star offers benefit package options.

Benefits-at-a-glance: click for more details

Starting Pay: $75-90k depending on experience

This position is work-at-home for individuals living in the state of South Carolina.

Why work-from-home with Five Star Call Centers?

Work from the comfort of your own home Steady employment throughout the year Choose your own dress code – no need to buy new clothing Save on commuting expenses like gas and car maintenance Flexibility to work with family @ home but not in your workspace (if under age of 4 you most have appropriate child care) We provide the technology, you provide the internet and home office

Position Responsibilities:

• Manage and facilitate 3 rd party security audits end-to-end including PCI DSS, SOC2 and HIPAA to keep the organization accredited with various globally recognized certificates.
• Perform risk analysis meetings with IT leadership and department owners, identifying areas for improvement or gaps that need to be addressed.
• Conduct and review client or vendor related security requirements regarding assessments, documentation requests, audits, and policies.
• Own the incident response plan and conduct regular training exercises. Document learnings and suggest changes as necessary.
• Coordinate with our Director of Project Management and Compliance, regular reviews of our company security policies and procedures, updating them to meet new security guidelines and company strategies.
• Work with our sales and implementation teams to understand new business strategies providing feedback or recommendations that limit risk and meet compliance standards.
• Stay up to date and communicate on security updates including emerging risks, trends, vulnerabilities, and technologies.
• Lead and develop security training for all levels of the organization and effectively drive awareness through testing and simulations.
• Prioritize and develop the automation and orchestration of routine security tasks
• Develop and maintain documentation that details how supported security systems are designed and how they should be maintained
• Perform other duties as assigned*

*Note: Management reserves the rights to assign or reassign functions and responsibilities to this job description at any time.

Required Education and/or Experience:

• 5+ years of IT Security Compliance, or other relevant experience required.
• Experience with Security Compliance and end-to-end audits
• Applicable IT risk management experience
• Advanced understanding of the business line’s operations, products/services, systems, and associated risks/controls
• Ability to work independently, and within a team, to manage processes with minimal oversight
• Technical project management ability and organization
• Excellent communication skills – Ability to translate risk and technical information into business terminology

Desired Education and/or Experience:

• Previous experience with PCI DSS and SOC II audits
• Third party (vendor) risk management experience
• Knowledge of applicable data privacy practices and laws like GDPR & CCPA

Desired Certifications:

• CISSP – Multi-domain technical and governance cert
• CISM – Security Management
• CRISC – Risk Management

Position Qualifications and Requirements:

• To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with to perform the essential functions.
• Excellent knowledge of spoken and written English
• Must be able to pass a background check applicable with state and federal laws

Physical Demands:

• While performing the duties of this job, the employee is regularly required to sit, and to use hands to finger, handle, or feel objects, or computer controls, and talk and hear. The employee is occasionally required to reach with hands and arms, stoop, kneel, or crouch. The employee must occasionally lift and/or carry loads of up to 30 lbs.
• Specific vision abilities required by this job include close vision, distance vision, color vision, peripheral vision, depth perception, and the ability to adjust focus.
• Proficient hand/eye coordination required to type while talking on the phone

Work Environment:

• The noise level in the work environment is usually moderate.
• Employees may be required to work other than normal business hours, such as holidays, evenings, weekends, etc., and overtime as business demands.
• Employees may be required to attend on- or off-site business functions or training sessions as necessary.
• All employees are required to actively follow Five Star Call Centers’ policies and procedures.

COVID-19 Considerations: Keeping our employees and our community healthy and safe!

• Multiple sanitation areas in the facility
• Social distancing in shared areas
• Staying home when sick

The above statements are intended to describe the general nature and level for work and are not intended to be an exhaustive list of all responsibilities, duties and skills required of the job.

Five Star Call Centers values diversity and is committed to cultivating a professional, diverse workforce by hiring the best people available and providing the best service possible to our customers. Five Star Call Centers is an EOE/Veterans/Disable/LGBT employer and participates in the E-verify program.