JobsEQ by Chmura Logo

IT Compliance Analyst II

Shentel
Location: Roanoke, Virginia
Type: Full-Time, Non-Remote
Posted on: September 13, 2023
Apply at Original Source
IT Compliance Analyst II
Shentel
85 reviews
Roanoke, VA
Full-time
Shentel
85 reviews
Read what people are saying about working here.
Job details Here’s how the job details align with your job preferences. Manage job preferences anytime in your profile .
Job Type
Full-time
Shenandoah Telecommunications Company (Shentel) provides broadband services through its high speed, state-of-the-art fiber optic and cable networks to customers in the Mid-Atlantic United States. The Company’s services include: broadband internet, video, and voice; fiber optic Ethernet, wavelength and leasing; and tower colocation leasing. The Company owns an extensive regional network with over 8,300 route miles of fiber and 220 macro cellular towers. For more information, please visit www.shentel.com.
Job Summary:
The IT Compliance Analyst, reporting to the Director of Information Security, plays a crucial role in ensuring the company's adherence to federal and state regulations, with a primary focus on Sarbanes-Oxley compliance. This position serves as the key liaison between the IT department and both internal and external audit organizations. The IT Compliance Analyst is responsible for coordinating all testing, documentation, and remediation efforts necessary for compliance audits.
Job Responsibilities: 1. Sarbanes-Oxley Compliance:
a. Lead and oversee all aspects of Sarbanes-Oxley (SOX) testing as it pertains to Information Technology General Controls (ITGC), including Internal Control and external audit partner coordination.
b. Manage audit requests and ensure timely and organized responses.
c. Organize and maintain all IT policies, leading annual reviews with IT management.
d. Communicate policy changes to Shentel personnel and ensure understanding.
2. Issue Remediation:
a. Collaborate with IT management to address audit findings promptly and effectively.
b. Provide updates and required documentation to auditors upon issue resolution.
3. Regulatory Compliance Auditing:
a. Audit cyber security controls to align with IT General Controls (ITGCs) and Center for Internet Security (CIS) Controls Self-Assessment Tool (CSAT) control groups.
b. Audit controls related to Personally Identifiable Information (PII) to ensure compliance with Virginia Consumer Data Protection Act (VCDPA) and other federal and state regulations.
c. Audit all Customer Proprietary Network Information (CPNI) activities to ensure compliance with all regulatory obligations.
d. Audit all Payment Card Industry (PCI-DSS) activities to ensure compliance with all regulatory obligations.
4. IT Policy Review:
a. Review IT departmental procedures to ensure compliance with relevant regulations.
b. Educate IT teams on new compliance requirements and assist in the development of compliant processes and procedures.
5. Project Involvement:
a. Participate in projects related to new systems to ensure that access design, both for commercial software packages and in-house applications, aligns with regulatory compliance requirements, such as SOX.
6. Financial and Vendor Management:
a. Demonstrate familiarity with Shentel IT finance and vendor management practices.
Qualification Requirements:
• Education: A four-year degree is required.
• Experience: 3-5 years of experience in compliance controls and testing, along with 3-5 years of experience in IT processes and systems, is necessary.
Job Skills & Knowledge:
• Knowledge of internal governance, risk, and compliance controls, including Sarbanes-Oxley, ISO 27001, CIS, HIPAA, NIST, CPNI, VCDPA, PCI-DSS and other relevant regulations and standards.
This role presents an exciting opportunity to contribute to our organization's commitment to compliance and security resilience. The IT Compliance Analyst will play a pivotal role in ensuring that Shentel continues to meet and exceed regulatory standards while maintaining operational efficiency.
If you meet the qualifications and are excited about this opportunity, we encourage you to apply and join our dynamic team.
Shentel is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
Shentel provides a drug-free workplace and is an EEO employer. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex (including sexual orientation and gender identity), national origin, disability, or protected Veteran status.
If you require accommodation or assistance to complete the online application process, due to a medical condition or impairment, please contact a HR Representative at 540-984-5241 or employment@emp.shentel.com. When you contact a HR Representative please identify the type of accommodation or assistance you are requesting. We will assist you promptly.
For technical issues with the website, please contact employment@emp.shentel.com.
EEO is the Law and Pay Transparency
Shenandoah Telecommunications Company (Shentel) provides broadband services through its high speed, state-of-the-art fiber optic and cable networks to customers in the Mid-Atlantic United States. The Company’s services include: broadband internet, video, and voice; fiber optic Ethernet, wavelength and leasing; and tower colocation leasing. The Company owns an extensive regional network with over 8,300 route miles of fiber and 220 macro cellular towers. For more information, please visit www.shentel.com.
Job Summary:
The IT Compliance Analyst, reporting to the Director of Information Security, plays a crucial role in ensuring the company's adherence to federal and state regulations, with a primary focus on Sarbanes-Oxley compliance. This position serves as the key liaison between the IT department and both internal and external audit organizations. The IT Compliance Analyst is responsible for coordinating all testing, documentation, and remediation efforts necessary for compliance audits.
Job Responsibilities: 1. Sarbanes-Oxley Compliance:
a. Lead and oversee all aspects of Sarbanes-Oxley (SOX) testing as it pertains to Information Technology General Controls (ITGC), including Internal Control and external audit partner coordination.
b. Manage audit requests and ensure timely and organized responses.
c. Organize and maintain all IT policies, leading annual reviews with IT management.
d. Communicate policy changes to Shentel personnel and ensure understanding.
2. Issue Remediation:
a. Collaborate with IT management to address audit findings promptly and effectively.
b. Provide updates and required documentation to auditors upon issue resolution.
3. Regulatory Compliance Auditing:
a. Audit cyber security controls to align with IT General Controls (ITGCs) and Center for Internet Security (CIS) Controls Self-Assessment Tool (CSAT) control groups.
b. Audit controls related to Personally Identifiable Information (PII) to ensure compliance with Virginia Consumer Data Protection Act (VCDPA) and other federal and state regulations.
c. Audit all Customer Proprietary Network Information (CPNI) activities to ensure compliance with all regulatory obligations.
d. Audit all Payment Card Industry (PCI-DSS) activities to ensure compliance with all regulatory obligations.
4. IT Policy Review:
a. Review IT departmental procedures to ensure compliance with relevant regulations.
b. Educate IT teams on new compliance requirements and assist in the development of compliant processes and procedures.
5. Project Involvement:
a. Participate in projects related to new systems to ensure that access design, both for commercial software packages and in-house applications, aligns with regulatory compliance requirements, such as SOX.
6. Financial and Vendor Management:
a. Demonstrate familiarity with Shentel IT finance and vendor management practices.
Qualification Requirements:
• Education: A four-year degree is required.
• Experience: 3-5 years of experience in compliance controls and testing, along with 3-5 years of experience in IT processes and systems, is necessary.
Job Skills & Knowledge:
• Knowledge of internal governance, risk, and compliance controls, including Sarbanes-Oxley, ISO 27001, CIS, HIPAA, NIST, CPNI, VCDPA, PCI-DSS and other relevant regulations and standards.
This role presents an exciting opportunity to contribute to our organization's commitment to compliance and security resilience. The IT Compliance Analyst will play a pivotal role in ensuring that Shentel continues to meet and exceed regulatory standards while maintaining operational efficiency.
If you meet the qualifications and are excited about this opportunity, we encourage you to apply and join our dynamic team.
Shentel is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
Shentel provides a drug-free workplace and is an EEO employer. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex (including sexual orientation and gender identity), national origin, disability, or protected Veteran status.
If you require accommodation or assistance to complete the online application process, due to a medical condition or impairment, please contact a HR Representative at 540-984-5241 or employment@emp.shentel.com. When you contact a HR Representative please identify the type of accommodation or assistance you are requesting. We will assist you promptly.
For technical issues with the website, please contact employment@emp.shentel.com.
EEO is the Law and Pay Transparency