GRC Analyst

  • Dillard's
  • Little Rock, AR, USA
  • 10/14/2019
Full time Information Technology

Job Description

Dillard’s is seeking a Governance, Risk, Compliance Analyst in Little Rock, Arkansas.  The GRC Analyst will be responsible for supporting Vendor Management, verifying Business as Usual practices are followed, as well as, leading Privacy and Data Governance projects. This role offers the opportunity to build solid relationships throughout the enterprise, with operations, developers, and vendors while learning about the vast amount of technologies employed within our organization.

Roles and Responsibilities:

  • Manage communication and Due Diligence for Vendor Management Program
  • Migrate existing data from past and current audits, policies, etc. into efficiency tools
  • Participate in the annual PC, IT SOX , and other audits
  • Manage Processes for Enterprise Policies, IT Security Standards, and Procedures
  • Articulate compliance goals and initiatives effectively to gain buy-in, trust, and collaboration from internal management, development, and operations teams
  • Establish and manage project plans and escalation methodologies, project reporting timetables, issue/resolution processes, and requirements prioritization
  • Negotiate remediation priorities as they pertain to audit gaps, findings, and legislation
  • Execute on day-to-day deliverables that support the ongoing compliance needs related to Vendor Management, Data Governance, IT policy, and compliance, as well as any current or new regulatory requirements
  • Exhibit ownership, follow-through, initiative, awareness and effective communication with IT teams and management
  • Identify trends, root causes, and key risk indicators of non-compliance

Required Skills:

  • Authorization to work in the United States without sponsorship
  • Ability to work onsite at Corporate Headquarters in Little Rock, AR
  • 1-2 years of experience in the areas of coordination/project management, compliance/audit, business analysis or software quality assurance
  • Strong problem solving, decision-making, reporting, communication, and management skills
  • Understanding of creation, and maintenance of policies, standards, and procedures
  • Effective planning, implementation, and negotiation skills
  • Strong research and technical writing skills of project plans, spreadsheets, and versioning documents
  • Ability to multi-task and track many simultaneous initiatives
  • Ability to work in a fast-paced environment
  • Must be tactful, detail-oriented, and able to comprehend technical and regulatory requirements

Desired Skills:

  • Experience testing or auditing technical controls
  • Knowledge of and experience with Payment Card Industry Data Security Standard (PCI DSS), SOX, or Privacy frameworks
  • Information Security or privacy recognized certification(s)
  • Google Suite experience