Data Security and Audit Compliance Officer

As the Data Security and Audit Compliance Officer you will have a dual role, your contribution will have a direct impact on the business. In this role, you will manage key projects that are crucial for ACN and establish a solid response to audit findings while maintaining compliance through policy, architecture and training processes.
As the role of technology in business changes from business enabler to business transformer, the range and complexity of systems and the dependence on them will only increase. Today's IT organizations must address the need for stability, performance and functionality across an ever-increasing range of legacy, hosted and proprietary systems – and to do so in a way that unlocks system potential without additional cost burdens.

• Manage Data Security related external audit reports and findings to resolution by clearing all agreed observations and recommendations
• Develop and direct an annual and ongoing audit program for both internal and external audit scopes building the relevant evidence required
• Prioritize and drive project activities with limited direction and support
• Introduce and maintain thorough project reporting (activity based as well as financial pre and post project calculations)
• Maintain documented security policies and procedures in cooperation with the owners of the respective activities and responsibilities
• Provides direct training and oversight to all employees, affiliate marketing partners, alliances, or other third parties, ensuring proper information security clearance in accordance with established organizational information security policies and procedures
• Initiates, facilitates, and promotes activities to create information security awareness within the organization
• Implements information security policies and procedures for the organization
• Reviews all system-related security plans throughout the organization's network, acting as a liaison to Information Systems
• Monitors compliance with information security policies and procedures, referring problems to the appropriate department manager
• Advises the organization with current information about information security technologies and related regulatory issues
• Monitors the internal control systems to ensure that appropriate access levels are maintained
• Conduct periodic information system reviews to assure compliance is maintained as well as providing recommendations on areas for improvement
• Serve in advisory role collaborating and partnering with stakeholder groups to identify options to resolve any exposures and mitigate risks.
• Partner with teams on planned IT infrastructure and application investments and projects to proactively evaluate and advise on suitability to meet security and compliance requirements.

• 6 years' experience in IT, with up to 3 years in Data Security and Compliance
• Detailed understanding of Data Security Processes, Policies and Procedures
• PCI training / awareness
• Data Protection and Privacy awareness / knowledge
• Proven experience in end to end operational service delivery, vendor management, application and infrastructure support and maintenance
• Excellent leadership and interpersonal skills
• Effective influencing and communications skills
• Strong people leadership experiences and coaching skills
• Experience in developing and negotiating service level agreements
• Proven knowledge and experience in ITIL
• Proven ability in driving change to effect substantial efficiency and effectiveness gains
• Proven ability to effectively manage relationships by facilitating and influencing decision making

• A stable full-time job (with 1 hour of fully paid break)
• Full on the job training
• Private medical care
• Cafeteria benefit system (Multisport card or other benefits to choose)
• Team events
• Internal and external trainings
• Great atmosphere and multicultural environment
• Additional days off for years of service