Job ID: 6922
Regulatory Compliance Specialist
Permanent contract
Portugal, PTFrance, FRBelgium, BEUnited States, US
Jun 3, 2022
Solvay is a science company whose technologies bring benefits to many aspects of daily life. Our purposewe bond people, ideas, and elements to reinvent progressis a call to go beyond, to reinvent future forms of progress, and create sustainable shared value for all through the power of science. In a world facing an ever-growing population and quest for resources, we aim to be the driving force triggering the next breakthroughs to enable humanity to advance while protecting the planet we all share.
We bond with customers and partners to address today and tomorrows megatrends. As a global leader in Materials, Chemicals, and Solutions, Solvay brings advancements in planes, cars, batteries, smart and medical devices, water and air treatment, to solve critical industrial, social, and environmental challenges. You can count on our innovative solutions to contribute to a safer, cleaner, and more sustainable future.
We are looking for
A Regulatory Compliance Specialist to be part of the IT Security Monitoring Organization, reporting to the IT Security Monitoring Manager. This role will be part of the overall Vulnerability Management Service with a focus on regulatory compliance.
The main responsibility of this position is to ensure that Solvay manages any required systems or technology as part of a formalized program that will ensure compliance with US regulations, especially NIST and CMMC.
Mission
Develop and execute a formalized compliance program.
Create and maintain all necessary templates required for evaluating compliance of an asset or system based on guidance from Group Security.
Track action plans for assessment gaps and compliance weaknesses to closure as part of a formalized Plan of Action and Milestone process.
Review annual System Security Plan revisions as required.
Develop a wiki page for communication on process and document sharing, and a dashboard to monitor compliance and progress.
Assist system and platform service owners with assessments.
Operate the Security Exception Process for the regulatory perimeter.
Be a subject matter expert and point of contact for NIST and CMMC security control compliance questions.
Liaise with the Materials business unit to ensure alignment with future initiatives that have a NIST/CMMC compliance aspect.
Create compliance reports and provide the business with questionnaire evidence when required.
In addition, the RCS will be responsible for:
Routinely brief and update senior IT Leadership and Business stakeholders on the status of ITs compliance.
Develop an understanding of Solvays technical infrastructure and security architecture components.
Understand the regulations behind NIST and CMMC compliance.
You can count on us for
You will bring
Certified Information System Auditor (CISA) or Certified Information Security Manager (CISM), Certified Internal Auditor (CIA), or other certifications.
Minimum of 5 years of experience in IT Security Auditing, Controls across enterprise IT systems and platforms.
Experience conducting security risk assessments.
Experience managing security controls or compliance with NIST, ISO 27000 series, or other frameworks.
Technical skills
English is required, French is nice to have.
Good transversal knowledge of IT Infrastructure systems and platforms.
Excellent oral and written communication skills.
Ability to discuss and summarize complex, technical topics at an executive level.
Ability to understand security control language and translate them into day-to-day operation IT expectations.
Understanding ITIL practices is required, certification is a plus.
You will get
Competitive salary
Health insurance
Life insurance
16 weeks of maternity/paternity and co-parenting leave
Free language courses (24 languages available)
Additional local benefits
Details
Location(s): Brussels (Belgium) / Paris (France) / Lyon (France) / Carnaxide (Portugal) / Princeton (New Jersey, United States of America) / Alpharetta (Georgia, United States of America) / Havre de Grce (Maryland, United States of America) / Marietta (Georgia, United States of America) / Piedmont (California, United States of America) / Greenville (Texas, United States of America) / Anaheim (California, United States of America) / Winona (Minnesota, United States of America) / Augusta (Georgia, United States of America)
Travel: Availability to travel is required even though traveling could be infrequent.
Remote working: Yes
#LI-HA1
#LI-TT1
Solvays purpose is to bond people, ideas, and elements to reinvent progress. We can only fulfill this purpose with a diverse workforce that feels respected and appreciated and has equal opportunities to work, grow and thrive. Our differences, visible or not, are valued. As Solvay seeks to promote unity and not uniformity, we invite you - regardless of background, age, gender, race, national origin, ethnicity, religion, sexual orientation, ability, or identity - to consider a future with us.
Solvay is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other legally protected characteristics. Click on the links to read "The EEO is the Law" poster and the EEO is the Law poster Supplement.