Acuity Brands IT Security Compliance Analyst Job in Conyers, Georgia
We Light the Way!
Acuity Brands (NYSE: AYI) is transforming the lighting industry. We take pride in our 12,000 employees, and they take pride in working with the best in the industry. Join a team committed to lighting the way to a more brilliant, connected, and productive world. Individually we are talented, but together we are unstoppable.
About this Position:
We're seeking a talented IT Security Compliance Analyst to join our security team! In this role, you will be a core member of our compliance team, which is responsible for identifying and managing security issues, and driving compliance across the company. You will be working closely with other members of the engineering teams in order to document risks identified by external researchers, internal testing efforts, as well as from automated security testing tools. You will be responsible for gathering and reviewing evidentiary matter on a routine basis to ensure compliance is met against regulatory requirements.
How you will contribute:
⦁ Leverage your organization skills, technical acumen, and communications skills as a member of security team to determine the impact of security issues and establish action plans to remediate security risks and audit findings
⦁ Experience working with Developers, DevOps, and Engineering teams in a dynamic environment to evolve the DevSecOps program and integrate regulatory compliance across Acuity Brands’ technical infrastructure.
⦁ Create, Maintain, and review various impact assessments through the GRC platform.
⦁ Assist senior security engineers with impact assessment reviews.
⦁ Create issues/risks identified from audit assessments, routine internal audits, external penetration tests, vulnerability scans, and ad-hoc reviews.
⦁ Assist in periodic audit (internal/external) reviews with all applicable departments.
⦁ Identify ownership of risks/issues and track all risks/issues throughout the lifecycle of the risk/issue.
⦁ Participate in evidentiary collection against implemented security controls.
⦁ Coordinate Penetration Tests and web application security vulnerability scans with external vendors.
⦁ Interpret the results of Penetration Testing and Vulnerability Scanning tools
⦁ Raise awareness of regulatory compliance requirements and track regulatory compliance across the company.
⦁ Keep up with the latest threats and updates to the SCF Risk Framework
Qualified applicants will have:
⦁ 2 – 3 Years of experience in risk management or adjacent work experience with interest in risk
⦁ Experience implementing security and privacy frameworks such as CIS CSC, SCF, NIST, ISO, GDPR, and CPRA
⦁ Ability to learn and understand new products and technology quickly
⦁ Willingness to work in a team environment to solve and complete tasks
⦁ Strong interpersonal and communication skills
⦁ BS in Computer Science or related technical degree required, or equivalent experience
Nice to have skills/experience:
⦁ CISA or CRISSC certifications
⦁ Experience with Governance Risk and Compliance (GRC) Platforms (e.g. Process Unity, OneTrust, SAI Global)
We invite you to apply today to join us as We Light the Way to a Brilliant, Productive, and Connected World!
Please utilize the internal career site to apply if you are a current employee at Acuity Brands.
We value diversity and are an equal opportunity employer. All qualified applicants will be considered for employment without regards to race, color, age, gender, sexual orientation, gender identity and expression, ethnicity or national origin, disability, pregnancy, religion, covered veteran status, protected genetic information, or any other characteristic protected by law.
Please click here (https://www.eeoc.gov/employers/upload/poster_screen_reader_optimized.pdf) and here (https://e-verify.uscis.gov/web/media/resourcesContents/E-Verify_Participation_Poster_ES.pdf) for more information.
Accommodation for Applicants with Disabilities: As an equal opportunity employer, Acuity Brands is committed to providing reasonable accommodations in its application process for qualified individuals with disabilities and disabled veterans. If you have difficulty using our online system due to a disability and need an accommodation, you may contact us at (770) 922-9000. Please clearly indicate what type of accommodation you are requesting and for what requisition.
Any unsolicited resumes sent to Acuity Brands from a third party, such as an Agency recruiter, including unsolicited resumes sent to an Acuity Brands mailing address, fax machine or email address, directly to Acuity Brands employees, or to Acuity Brands resume database will be considered Acuity Brands property. Acuity Brands will NOT pay a fee for any placement resulting from the receipt of an unsolicited resume.
Acuity Brands will consider any candidate for whom an Agency has submitted an unsolicited resume to have been referred by the Agency free of any charges or fees. This includes any Agency that is an approved/engaged vendor, but does not have the appropriate approvals to be engaged on a search.