The Privacy and Compliance Lead will be responsible for supporting the implementation and administration of Apple’s privacy program within the Information Systems and Technology (IS&T) department. The successful candidate will have knowledge of common privacy practices, laws, and regulatory frameworks (GDPR, PCI, GAAP, etc) as well as a solid understanding of various technologies, information security and risk management. Apple’s Information Systems and Technology (IS&T) department is seeking a hands-on IT professional to manage and support our IT governance and compliance processes. Our group drives compliance and privacy initiatives and standards across Apple’s IS&T functional groups, including financial and business transaction applications, the Apple Online Store, Apple retail stores, and customer support systems.
Responsibilities include: ?
-Work with various business and IT groups to understand how IT systems are used in Apple's processes and codevelop policies, processes, and controls with each group that ensure solutions not only meet compliance and security objectives but also scale with the business and improve operational efficiencies
?-Identify gaps in the design and implementation of IT processes and controls
?-Perform and coordinate privacy and security audit and assessment testing as needed to meet the requirements of multiple compliance organizations
-Direct experience with internal control and IT governance and audit frameworks from multiple sources
?-Experience with IT policies, controls, test plans, and working papers that support external audits and/or management's control assertions
?-Strong understanding of general IT and security controls
-Familiarity with programming/scripting language (Bash, Perl, PHP, etc.) and database design and programming (MySQL, Oracle), with a strong desire to learn more and be hands-on
?-General knowledge of COSO, COBIT, ITIL, and NIST frameworks
?-Identify and recommend solutions for compliance gaps ?-Develop and maintain automated audit and testing tools
?-Create and maintain detailed project tasks and communicate across multiple functional teams
?-Liaise with external auditors and interrupt audit requests and approach to internal management
BA/BS degree in information systems, or other degree having a focus on information systems. Equivalent work experience at a comparable (ideally technology) company, or top-tier consulting firm will be considered Additional requirements