IT Risk and Compliance Analyst

General Responsibilities
Job Purpose
Monitor and implement information security safeguards for Hertz information systems and components
Manage and report on IT security compliance. Maintain and improve the compliance processes for Hertz computing resources to allow reasonable and acceptable level of protection. Identify and mitigate possible security breaches (internal and external). Perform security assessments of critical computing resources.
Key Result Areas
Conduct regular vulnerability and independent assessments.
Conduct reviews of critical computing resources.
Manage independent assessment efforts.
Gather and analyze information from Hertz computing resources to identify possible security breaches including intrusions from outside (attacks) and inside (misuse) of the systems.
Coordinate the efforts internal and external resources required to resolve computer incidents as required.
Maintain and improve log consolidation and event correlation system.
Identify internal control risks, and suggest practical cost-effective solutions to eliminate or compensate for the risk in all areas.
Conduct control reviews for operating systems, applications, and systems infrastructure.
Develop techniques to automate and expand periodic reviews for areas of high-risk exposure.
Track and report on the status of corrective actions for completed internal and external audits/assessments.
Maintain an awareness of control issues in emerging technologies.
Interface with internal and external auditors.
Determine the need for policies, procedures, standards, and ensure ongoing compliance.
Conduct special projects/analysis where objectivity and independence is required.
Coordinate, gather and input Audit findings/responses
Other duties as assigned
Mandatory Requirements
Educational Background:
Bachelors degree in MIS, Computer Science, Business Management or other equivalent degree or experience
Mandatory Requirements
3 years experience with IT risk assessments, COBIT methodology, PCI and SOX related projects.
1 year of audit experience with multi-platform technology (compliance tests with MIS policies, procedures, and standards).
At least 1 year of IT and/or Information Security experience
Working knowledge of MS Office (MS Word, Excel, Access, PowerPoint, etc.)
Good collaboration, problem solving, and project management skills
Ability to prioritize and multi-task
Excellent written and verbal communication skills.
Ability to work independently; work without day to day supervision
Preferred Requirements
Experience in managing multiple projects simultaneously
Three years of systems security experience with multi-platform technology
IT Security certification (CISSP/CISA/CISM)
Previous hands-on experience as an IS Analyst or possess auditing credentials with an emphasis on IT auditing
Enterprise security monitoring activities
Experience in incident management and/or computer forensics
Hertz is a Drug-Free Workplace. All offers are contingent on successful drug and background screenings.
EEO/AA: Females/Minorities/Disabled/Vets
EEO StatementHertz is an equal opportunity affirmative action employer and administers all personnel practices without regard to race, color, religion, sex, age, national origin, sexual orientation, gender identity or expression, marital status or domestic partnership status, disability, protected veteran status or military status, genetic information, or any other category protected under applicable law. Hertz is committed to taking affirmative steps to promote the employment and advancement of minorities, women, persons with disabilities and protected veterans.

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Payments Risk Compliance Analyst
Trenton, NJ U.S. Bank
IT Risk Analyst, Sr. Specialist
Jersey City, NJ The Bank of New York Mellon
IT Risk Analyst, Sr Specialist - GIARS SIRO, AST
Jersey City, NJ The Bank of New York Mellon
Senior Analyst, Pricing and Compliance Dashboa...
Franklin Lakes, NJ BD (Becton, Dickinson and Company)
Sr.Group Mgr,IT Risk Mgmnt - Technology Risk a...
Jersey City, NJ The Bank of New York Mellon