1. Home
  2. INFORMATION SECURITY COMPLIANCE- IT SOX EXPERT
Expires soon
Nike

INFORMATION SECURITY COMPLIANCE- IT SOX EXPERT

  • Graduate job
  • Portland (Multnomah County)
  • Accounting / Management control
Apply Now

Job description

As an IT SOX Compliance Expert, your role on the team will include leveraging your knowledge of industry best practices, people and problem solving skills to ensure regulatory compliance functions are properly executed for the IT component of the Sarbanes-Oxley Act (SOX). This role requires very strong consulting skills, since you will work with business units to align accountabilities for compliance and information risk, which helps create transparency for Nike's information security program.

You must be passionate about Compliance, since you will be a champion for industry best practice frameworks, such as ISO, NIST and CoBIT. You will regularly meet with business and technology leaders across Nike to consult with them on their information security compliance requirements. You will work cross-functionally within the Corporate Information Security (CIS) teams and across Nike Technology to establish robust processes and interactions for compliance, exception management, security testing, risk management and vulnerability management.

To make it clear, we"re not looking for just anyone. We"re looking for someone special, someone who has clearly demonstrated skills and experience, since your responsibilities will include, but not be limited to:

• Align multiple stakeholders across numerous information technology and business process disciplines to ensure compliance is achieved and maintained.
• Champion information security policies, standards, controls, and processes so that compliance requirements are addressed as part of “business as usual” operations.
• Work as part of a team to implement Nike's comprehensive information security compliance program.
• Support the enforcement of information security policies, standards and procedures by working cross-functionally with Risk and Governance functions.
• Stay current on information security technologies, trends, standards and best practices to maintain in-depth knowledge of your profession.
• Understand the relationship between information security policies, standards, procedures, and controls as they pertain to the delivery and maintenance of quality systems so that you can effectively advocate information security rationale to business stakeholders.
• Understand PCAOB requirements and how it impacts public auditing functions.
• Demonstrate an ongoing level of formal professional competence.

Desired profile

This opportunity requires skills and experience related to information security compliance, risk management techniques and effective communication and presentation skills. You must have a strong desire to operate as a leader and be comfortable working in an ambiguous, yet fast-paced, environment. Superb speaking, writing and influencing skills are required as the opportunity to present verbally or in written form to IT and business leadership is frequent.

To ensure that we continue to hire competent, ethical and trustworthy individuals, all candidates must successfully complete a thorough background investigation prior to receiving any offer of employment from Nike. Other qualifications include:

• Previous experience operating or auditing IT SOX controls.
• Working knowledge of information security principles, frameworks and best practices (e.g., COBIT, COSO, NIST and ISO).
• Experience and knowledge of PCAOB requirements, promulgation of standards and how it impacts public auditing functions.
• Proven experience identifying solutions for complex problems in enterprise environments.
• Excellent analytical and problem solving skills.
• Passion for the Nike brand and for an innovative, Just Do It work environment.
• Excellent collaboration skills – must be eager to work as part of a cohesive team and work as a partner to other within Nike, Inc. both at WHQ and globally.
• Current on information security technologies, trends, standards and best practices.
• Bachelor"s degree in Business Information Management, Information Security, Computer Science, Finance or Accounting.
• CISA, CRISC, CISSP, or CISM certifications are beneficial.
• Proven ability to identify and develop clear and understandable performance measures from high-level business objectives.
• Proven ability to pull a diverse group of individuals with different goals together and facilitate productive discussions driving towards results.
• 10+ years directly relevant professional experience in business or technology.
• Strong business acumen to quickly learn new business processes and understand how information security needs to support the business in achieving revenue and profit goals.
• IT Audit, internal Audit and/or risk advisory experience is a plus.
• Experience working as a BSA/Lead on multiple projects and business functions is a plus.
• Knowledge of PCI a plus.

Make every future a success.
  • Job directory
  • Business directory
    •