Information Security Compliance Manager - Ottawa, Canada - ORBCOMM

ORBCOMM

Verified Company

Ottawa, Canada

2 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

OBRCOMM is looking for an

Your main objective focuses on validating that critical processes and controls are working end-to-end, identifying risk areas and risk treatment and control mitigation, as well as participating in projects to understand and determine potential impact to regulatory compliance components.

You will identify areas of improvement and non-compliance which may result in process changes and/or new controls.

The Information Security Compliance Manager will drive various initiatives to completion and assist in managing and growing an effective Compliance Program.

You will be responsible for a variety of functions centered on effective implementation of all the elements of a compliance program:

compliance with applicable laws, rules, and regulations, internal policies, and procedures; accepted business practices, ethical standards, and contractual security obligations.

Key Objectives:

Assist project team, key stakeholders, and management to prioritize security and compliance requirements and develop and maintain detailed project plans using standard tools
Execute on Security & Compliance programs owned by our organization including but not limited to Privacy Data Security, NIST CSF, ISO 27002, OWASP ASVS, etc.
Assist in information security assessment/analysis, mitigation, and remediation. Advise in implementing solutions and mitigation plans for control deficiencies; regulatory and compliance gaps and make recommendations for process efficiencies.
Drive process improvements and control implementation across business functions, including resolution of assessment findings and independent initiatives.
Effectively assist in leading by influence and work in a matrix/cross functional (Security Champions).
Lead targeted compliance assessments, audits, and reviews, communicating results and recommendations in clear and concise written reports; and collaborate with management to ensure corrective actions are implemented effectively.
Validate system requirements, flows, and written procedures through testing and observations, and to ensure regulatory compliance operating procedures and controls are working as intended.
Help provide training and training materials for new processes and security awareness.
Assist with developing and defining new and improved workflow and initiatives.
Perform analysis based on the testing results through observations and reports to identify system and process gaps reducing risk to ORBCOMM.
Document all work, and findings resulting from testing and communicate to relevant stakeholders within defined standard processes.
Conduct related ongoing security compliance monitoring activities in coordination with the organization's other compliance and operational assessment functions.
Prepare relevant Plan of Action and Milestone (POA&M) reports based on the findings and recommendations of a security assessment report excluding any remediation actions taken.

Key Result Areas

Stay abreast of existing and upcoming regulatory legislation to assess potential impact on the ORBCOMM compliance programs.
Assist in the implementation of the Company GRC system, policies, standards, and processes.
Assist in creation of comprehensive and meaningful strategy presentations for senior executives.
Document roadmaps for key initiatives and programs.
Ability to contribute to building a framework and drive development through dynamic business intelligence tools and dashboards for use in ongoing business planning and goal measurement through KPIs.

Key Success Indicators

Monitor the effectiveness of the compliance assessment process in accordance with agreed metrics and performance measures to drive continuous improvements.
Develop comprehensive performance analysis of business processes and review ways of improvement.
Develop and report upon agreed Key Performance Indicator metrics.
Develop comprehensive performance analysis of business processes and review ways of improvement.
Actively participate in stakeholder meetings with the goal of understanding all major projects and initiatives planned.

About ORBCOMM Inc.

Interested?

At ORBCOMM, we believe that our people are our strength. Our success stems from our ability to attract and retain the best people who deliver a high level of performance and skill.
If you are looking for a significant career opportunity and the chance to work for an established, successful and high growth company, ORBCOMM is the ideal place for you.