Overview
Are you ready to move your career forward, and start the BEST job of your life? Haskell is committed to providing you with the resources to help you grow and discover your potential. We promote an environment that encourages innovative ideas and allows you to develop the best “how” to get the job done.
In this role, you will be responsible for assisting with the development of Haskell compliance auditing functions, as well as conducting audits to ensure that Haskell complies with all relevant laws, regulations, and standards (such as NIST 800-171, CMMC, ITAR, and others as identified) in collaboration with all Haskell departments and Business Units as necessary.
Your responsibilities will include:
- Performing a hands-on Analyst role by documenting and analyzing requirements (e.g. business system, security, and reports), developing business process flows, and assisting with remediation, testing, training, and other needs necessary to become/remain compliant with information security program mandates
- Project management for security compliance initiatives by developing project plans, cost estimates, or other resource estimates; providing direction to matrixed project resources as necessary; and preparing for contingencies
- Developing, implementing, and maintaining (In conjunction with General Counsel and IT) control systems to record, track, and ensure compliance with physical and electronic information security standards
- Conducting and coordinating regular internal audits and assessments to identify and mitigate risks and vulnerabilities and third-party compliance audits
- Developing, monitoring, enforcing, and tracking training required to maintain information security compliance
- Developing, implementing, and maintaining information security compliance policies and procedures
- Monitoring and evaluating information security controls and systems for compliance with applicable regulations and policies
- Creating corrective action plans as needed
- Serving as Haskell’s CMMC-AB Authorized Representative
- Reporting to the General Counsel and other senior management on information security compliance status, issues, and incidents
- Providing guidance and training to staff and stakeholders on information security compliance matters
- Staying abreast of the latest security trends, threats, and regulations
- Facilitating communication between Legal, IT, business units, and staff including risks, resolutions, remediation of risks and issues, and educating and building awareness of information security best practices, policies, and procedures
- Participating in the strategic planning of Haskell’s vision of compliance management
- Participating in strategic application/technology discussions to determine long-range business solutions as it relates to information security compliance
- Facilitating, coordinating, and supporting enterprise initiatives to ensure information security compliance
- Assisting business units with defining business processes, identifying potential areas for ongoing improvement or re-engineering, and implementing solutions that fulfill information security compliance and auditing requirements
- Providing ad-hoc support/guidance to requests, determining an appropriate course of action using expert resources as necessary and implementing a solution
- Participating in industry conferences and forums that contribute to the advancement of physical and electronic information security, compliance, and audits as necessary to fulfill position requirements
- Other tasks and duties as needed to support the team and/or business
- Travel as required
Education & Years of Experience:
- BS in Computer Science, information technology, Cybersecurity, or related field / education / training / experience. A minimum of 3-5 years of experience in cybersecurity, compliance, information technology, or similar role
To thrive in this role, you'll need:
- CMMC-AB Registered Practitioner (RP) certification preferred
- Strong knowledge of data privacy laws and other relevant state and federal regulations (NIST)
- A solid understanding of cybersecurity frameworks, standards, and best practices (CMMC)
- Excellent written and verbal communication, analytical, and problem-solving skills
- A high level of integrity, professionalism, and confidentiality
- Strong technical skills and proficiency in Microsoft Office 365 products (MS Teams, SharePoint, Word, Excel, Outlook, etc.)
- Proficiency in Power BI, Power Automate, Power Apps and other Power Platform applications
- Certification in cybersecurity or compliance (CISSP, CISM, CISA, CRISC)
Join our team and be a driving force behind our project success!
At Haskell, we offer a comprehensive benefits package, including health insurance, retirement plans, professional development opportunities, and more. Join us and be part of a team where your contributions make a difference.
Ready to take your career to new heights? Apply now and become part of the Haskell family.
Environmental Factors and/or Physical Requirements:
While performing the duties of this job, this position is required to have ordinary ambulatory skills sufficient to visit other locations; and the ability to stand, walk, stoop, kneel, crouch, and manipulate (lift, carry, move) light to medium weights of 10-50 pounds. Requires good hand-eye coordination, and arm, hand and finger dexterity, including the ability to grasp, and visual acuity to use a keyboard, operate equipment and read application/form information. The associate frequently is required to sit, reach with hands and arms, talk, and hear.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities:
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, citizenship, disability, or protected veteran status. Haskell will make reasonable accommodations in compliance with the Americans with Disabilities Act of 1990 and the Americans with Disabilities Act Amendments Act of 2008. The job description will be reviewed periodically as duties and responsibilities change with business necessities. Essential and marginal job functions are subject to modification.
Haskell is a Drug-Free Workplace.
#LI-JP1
#LI-Onsite
#LI-Assoc