Senior Principal Compliance Specialist

Symantec   •  

Tempe, AZ

Industry: Technology


5 - 7 years

Posted 50 days ago

About Symantec:

Symantec Corporation (NASDAQ: SYMC) is the global leader in cybersecurity. Operating one of the world’s largest cyber intelligence networks, we see more threats, and protect more customers from the next generation of attacks. We help companies, governments and individuals secure their most important data wherever it lives

Essential Duties and Responsibilities:

  • Responsible for working under the direction of the Director and/or Senior Manager of Compliance in aspects of planning, maintaining, and managing compliance policy governance, risk management, third-party risk management, and cloud governance.
  • Responsible for the operation of compliance governance and risk management in terms of continuous monitoring, executive reporting, audit management and enterprise risk management.
  • Working with lines of business to research technical regulations that have potential impacts on the business and its product and create action plans to ensure compliance by the requireddate.
  • Provide input to the Director and/or Senior Manager of Compliance for enhancing the compliance strategy when necessary.
  • Manage risk activities including conducting annual and project risk assessments, and third-party assessments including managing remediation activities.
  • Provide guidance on work product and acting as an influencer for following industry standards and best practices.
  • Assist business units in understanding and implementing compliance policy objectives in ways that are cost effective and align with business objectives. Provide compliance and risk input for business procedures, and new projects.
  • Evaluate compliance controls to ensure effectiveness and compliance, including managing control remediation efforts.
  • Participate in internal control assessments.
  • Stay current on industry trends, attack techniques, mitigation techniques, and security technologies by attending conferences, networking with peers, and other educational opportunities.
  • Mentor and train lessexperienced compliance staff.

    Qualifications and Requirements:

  • Bachelordegree in information Systems, Information Technology, Computer Science, Accounting or Engineering or related discipline (or professional experience working in Enterprise IT) or equivalent experience.
  • 5 years’ experience in an information security or compliance related role, such as security analyst or auditor
  • 3 years’ experience conducting control assessments or audits
  • 2 years’ experience managing the implementation or enhancement of compliance controls across a diverse business
  • Deeply familiar with PCI, Sarbanes Oxley (SOX), NIST cybersecurity framework, ISO 27000 security standards, and data protection regulations and requirements (including GDPR)
  • Strong problem-solving skills, including the ability to develop innovative risk mitigation solutions that address core issues
  • Versed in enterprise risk assessment methodologies
  • Public Accounting or Professional Service firm background preferred
  • Strong written and verbal communication skills

Experience with deploying and/or managing enterprise Governance, Risk, & Compliance (GRC) technologies


Symantec is an equal opportunity employer. All candidates for employment will be considered without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, physical or mental disability, veteran status, or any other basis protected by applicable federal, state or local law.