Audit and Compliance Lead (NIST 800-53)

Alight Solutions

3.8

(36)

Lincolnshire, IL

Why you should apply for a job to Alight Solutions:

  • 4.2/5 in supportive management
  • 78% say women are treated fairly and equally to men
  • 75% would recommend this company to other women
  • 72% say the CEO supports gender diversity
  • Ratings are based on anonymous reviews by Fairygodboss members.
  • All Alight full-time colleagues receive health benefits beginning on their first day of employment, paid time off and 401k corporate match
  • Alight achieved a score of 100 in the Human Right’s Campaign’s 2021 Corporate Equality Index
  • Our Global Colleague Led Communities are an integral component of Alight's commitment to drive change in diversity and inclusion
  • #R-25699

    Position summary

    rk.

    Join our team if you Champion People, want to Grow with Purpose through acting with integrity and if you embody the meaning of Be Alight.

    Learn more at https://www.careers.alight.com .

    Audit and Compliance Lead (NIST 800-53)

    Summary

    As a member of Alight Global Security's Security & Compliance team, this position will provide subject matter expertise for NIST 800-53 compliance standards and regulations and how it applies and is demonstrated by Alight for various audits. With a deep understanding of NIST 800-53, this role, will provide guidance to subject matter experts within Alight on what they need to do to meet and demonstrate each control and help speak to and present collected evidence with various auditors. Additionally, this role would lead any necessary gap assessments, compliance readiness, and compliance monitoring activities.

    Responsibilities

    • Team NIST 800-53 subject matter expert

    • Gains a deep understanding in Alight technology, security, and business operations to aid in audits and verifying NIST compliance.

    • Work with business leaders and other stakeholders to ensure NIST 800-53 security standards are embedded in business operations and delivery.

    • Interpret patterns of NIST non-compliance to determine impact on levels of risk and work with the appropriate resources to drive higher levels of compliance.

    • Provides coaching and mentorship to team members and stakeholders, especially on NIST 800-53 controls and their application.

    • Provides input into industry best practices for managing compliance in today's landscape.

    • Lead the design, documenting and assessment of audit controls.

    • Develop testing procedures for assessing the design and operating effectiveness, completeness, accuracy/validity, and timeliness of control outputs.

    • Identify & escalate any new or emerging gaps in policy or control environment & provide expert advice on new requirements.

    • Develop and maintain findings library to support analysis, trends.

    • Drive remediation and risk mitigation planning, execution and oversight.

    • Provide remediation and policy/control guidance to Alight stakeholders.

    • Escalate and plan for potential NIST regulatory changes.

    • Leads, delivery of audit milestones to ensure audit timelines stay on target by escalating and identifying roadblocks.

    • Leads, the identification of business process improvements and partners with technology and business stakeholders to identify pragmatic approaches to compliance readiness and testing.

    • Collaborates cross-functionally with technology and business stakeholders to drive, track, and resolve all aspects of compliance readiness and audit execution.

    • Provides control guidance to technology and business stakeholders to lead them in providing the expected and appropriate evidence.

    • Interfaces with internal and external auditors for audit activities

    • Conducts various IT Compliance controls validation.

    • Collaborates with technology and business stakeholders along with other Compliance team members to facilitate remediation and execution of corrective action plans.

    • Participates in continuous improvement initiatives.

    • Develops metrics and dashboards for reporting on assigned compliance programs.

    • Manage several projects simultaneously with a sense of urgency.

    • Comfortable dealing with ambiguity.

    • Ability to work on a diverse team or with a diverse range of coworkers.

    Qualifications

    • U.S. Citizens based in the U.S.

    • 5+ years of experience in IT audit and/or compliance, with a concentration on NIST 800-53 specifically experience leading a Cloud Service Provider through NIST related audits.

    • Must possess a strong background with NIST 800-53 framework and have broad range skills in the fields of NIST publications, FedRAMP requirements.

    • Experience with control assessments and coordination of audit activities.

    • Familiar with Information Security principles, knowledge of IT processes (e.g. Change Management, Incident Management, Risk Management, Network and System Administration),

    • Bachelor's Degree in Information Technology, Business or related vocations.

    • MS Office and project management skills.

    • Written and verbal English proficiency required.

    • Strong partnering, communication and presentation skills.

    • Strong analytical and problem-solving skills.

    • Strong relationship and team building skills.

    • Knowledge of Service Now a plus.

    • Interest in developing knowledge in security and interactions with various internal and external client functions.

    • Security certifications (CISSP, CISA, CISM, ISO 27001) a plus.

    • Position may occasionally require hours to accommodate US, EMEA & APAC time zones.

    Flexible Working

    So that you can be your best at work and home, we consider flexible working arrangements wherever possible. Alight has been a leader in the flexible workspace and "Top 100 Company for Remote Jobs" 5 years in a row.

    Benefits

    We offer programs and plans for a healthy mind, body, wallet and life because it's important our benefits care for the whole person. Options include a variety of health coverage options, wellbeing and support programs, retirement, vacation and sick leave, maternity, paternity & adoption leave, continuing education and training as well as a number of voluntary benefit options.

    By applying for a position with Alight, you understand that, should you be made an offer, it will be contingent on your undergoing and successfully completing a background check consistent with Alight's employment policies. Background checks may include some or all the following based on the nature of the position: SSN/SIN validation, education verification, employment verification, and criminal check, search against global sanctions and government watch lists, credit check, and/or drug test. You will be notified during the hiring process which checks are required by the position.

    Our commitment to Diversity and Inclusion

    Alight is committed to diversity, equity, and inclusion. We celebrate differences and believe in fostering an environment where everyone feels valued, respected, and supported. We know that diverse teams are stronger, more innovative, and more successful.

    At Alight, we welcome and embrace all individuals, regardless of their background, and are dedicated to creating a culture that enables every employee to thrive. Join us in building a brighter, more inclusive future.

    Diversity Policy Statement

    Alight is an Equal Employment Opportunity employer and does not discriminate against anyone based on sex, race, color, religion, creed, national origin, ancestry, age, physical or mental disability, medical condition, pregnancy, marital or domestic partner status, citizenship, military or veteran status, sexual orientation, gender, gender identity or expression, genetic information, or any other legally protected characteristics or conduct covered by federal, state or local law. In addition, we take affirmative action to employ and advance in the employment of qualified minorities, women, disabled persons, disabled veterans and other covered veterans.

    Alight provides reasonable accommodations to the known limitations of otherwise qualified employees and applicants for employment with disabilities and sincerely held religious beliefs, practices and observances, unless doing so would result in undue hardship. Applicants for employment may request a reasonable accommodation/modification by contacting his/her recruiter.

    Authorization to work in the Employing Country

    Applicants for employment in the country in which they are applying (Employing Country) must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the Employing Country and with Alight.

    Note, this job description does not restrict management's right to assign or reassign duties and responsibilities of this job to other entities; including but not limited to subsidiaries, partners, or purchasers of Alight business units.

    We offer you a competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization.

    Pay Transparency Statement: Alight takes into consideration a candidate's experience, education, certification/credentials, market data, internal equity, and geography when determining an offer for a successful employment candidate, and Alight does so on an individualized, non-discriminatory basis. Therefore, an offer may fall anywhere between the estimated minimum base salary for this role of $87,000.00/year (for full time employees) and the estimated maximum base salary for this role of $162,600.00/year (for full time employees). In addition to a base salary, this position may be eligible for a bonus and/or other incentive plans. Alight also offers a comprehensive benefits package; for specific details on our benefits package, please visit: https://careers.alight.com/us/en/alight-us-benefits-2023

    DISCLAIMER:

    Nothing in this job description restricts management's right to assign or reassign duties and responsibilities of this job to other entities; including but not limited to subsidiaries, partners, or purchasers of Alight business units.
    Alight Solutions provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, genetic information, pregnancy, childbirth or related medical condition, veteran, marital, parental, citizenship, or domestic partner status, or any other status protected by applicable national, federal, state or local law. Alight Solutions is committed to a diverse workforce and is an affirmative action employer.

    Why you should apply for a job to Alight Solutions:

  • 4.2/5 in supportive management
  • 78% say women are treated fairly and equally to men
  • 75% would recommend this company to other women
  • 72% say the CEO supports gender diversity
  • Ratings are based on anonymous reviews by Fairygodboss members.
  • All Alight full-time colleagues receive health benefits beginning on their first day of employment, paid time off and 401k corporate match
  • Alight achieved a score of 100 in the Human Right’s Campaign’s 2021 Corporate Equality Index
  • Our Global Colleague Led Communities are an integral component of Alight's commitment to drive change in diversity and inclusion