As a member of the IT Governance, Risk & Compliance organization, the Senior IT Governance Analyst is responsible for aligning IT processes and actions with the organization’s business goals. This includes aligning international strategy with IT processes and enforcing the technical implementation of global privacy law.  This role works with departments across the organization to ensure IT governance requirements are properly identified, documented, and enforced.  

RESPONSIBILITIES

Monitor information security news for emerging threats, technologies, and regulations that could have an impact on the security of Paycom’s processes, systems, and applications. Collaborate with teams across the enterprise to educate, communicate, identify, document, and remediate IT governance issues. Directs the development of benchmarks and sets specific goals for the evolution of the security of Paycom’s systems, processes, and applications. Collaborate with and educate employees at all leadership levels on IT GRC requirements. Champion and manage IT SOX, SOC 1, SOC 2, ISO, PCI-DSS, FFIEC, and GDPR programs, documenting policies and procedures as well as performing audits, risk assessments and management reviews. Assist with the implementation of new control frameworks and risk mitigation strategies. Coordinate with legal (enterprise risk and privacy) to understand new legislation and coordinate with the proper IT and development teams to technically enforce.  Assist with IT policy updates and contract reviews to ensure IT governance requirements are documented and enforceable. Coordinate and execute IT GRC projects, as assigned. Report results to leadership. Champion IT frameworks, controls, and approved processes across the organization. Perform audits, risk assessments, and management reviews. Responsibility for oversight of governance and controls for IT systems and the security measures that govern access to these systems. Update job knowledge by participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations. Protects organization's value by keeping information confidential. Assist in onboarding new teammates. Assist in the development of IT GRC benchmarks and set specific goals for the evolution of the security of Paycom’s systems, processes, and applications. Actively seek to expand individual skills through research, training, and collaboration with peers. Attend meetings and serve on committees, as requested. Work flexible hours, including weekends and evenings. Availability to respond to emergency situations. Perform additional duties and assignments as requested.