Roles and Responsibilities
Act as primary IBM focal point with end to end responsibility for global and account internal, regulatory and external audits.
Assists account delivery teams with validating and drafting client recommendations in addressing audit issues and ensures mitigating controls are in place.
Coordinates and aligns global IBM and client expectation with existing infrastructure in drafting audit responses.
Collects and analyzes IBM Global Operational Metrics to ensure satisfactory compliance posture of the account by coordinating with operations teams, formulating action plans, and monitoring progress.
Conducts periodic reviews of internal process to ensure compliance measurements are aligned to global process alignment.
Drafts and maintains the Customer Security Document annually or as needed to align account’s security policies with IBM’s best practice.
Provide recommendations to resolve account management, technical and delivery teams on compliance exposure.
Performs, reviews, communicates to account management, and tracks risk assessments on identified threats for the account and recommends appropriate resolutions.
Participates in account contract reviews and assessment to ensure service commitments with client are included in customer security document where needed.
Provide security and regulatory related education to ensure security awareness and knowledge of customer applicable security policies, regulatory and government mandates, and processes.
Required Technical and Professional Expertise
Relevant Skills/Experience Years of Experience
Knowledge and competency in auditing concepts and techniques 1 - 3 years
Knowledge and competency in compliance management and issue resolution 1 - 3 years
Knowledge and competency in risk assessment and management, with great emphasis on enterprise IT risks 1 - 3 years
Experience and knowledge in enterprise IT environments including, but not limited to, server administration, networking, and IT security 1 - 3 years
Knowledgeable in Data Privacy Act and GDPR
Knowledgeable in BSP Circular 808
Knowledgeable in ISO 27001 controls
Preferred Tech and Prof Experience
ISO 27001 Lead Assessor
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.