Are you ready to move your career forward, and start the BEST job of your life? Haskell is committed to providing you with the resources to help you grow and discover your potential. We promote an environment that encourages innovative ideas and allows you to develop the best “how” to get the job done.
At Haskell, we Create Things That Matter and have prioritized our team members' experiences. One of our company pillars is to “Provide Team Members the BEST Job of Their Lives” and we manifest that in a variety of ways. Our Employee Stock Ownership Plan (ESOP) creates stock ownership for our full-time team members. As an employee-owned company with an ownership culture, we work together for the benefit of our clients and each other.
In this role, you will be responsible for developing and conducting audits to ensure that Haskell complies with all relevant laws, regulations, and standards (such as NIST 800-171, CMMC, ITAR, and others as identified) in collaboration with all Haskell departments and Business Units as necessary.
Job Responsibilities:
- Develop, implement, and maintain control systems to record, track, and ensure compliance with physical and electronic information security standards.
- Conduct and coordinate regular internal audits and assessments to identify and mitigate risks and vulnerabilities and third-party compliance audits.
- Develop, monitor, enforce, and track training required to maintain information security compliance.
- Develop, implement, and maintain information security compliance policies and procedures.
- Monitor and evaluate information security controls and systems for compliance with applicable regulations and policies.
- Create corrective action plans as needed.
- Serve as Haskell’s CMMC-AB Authorized Representative.
- Report to senior management on information security compliance status, issues, and incidents.
- Provide guidance and training to staff and stakeholders on information security compliance matters.
- Stay abreast of the latest security trends, threats, and regulations.
- Facilitate communication between IT, business units, and staff including risks, resolutions, remediation of risks and issues, and educating and building awareness of information security best practices, policies, and procedures.
- Strategize and participate in the strategic planning of Haskell’s vision of compliance management.
- Participate in strategic application/technology discussions to determine long-range business solutions as it relates to information security compliance.
- Facilitate, coordinate, and support enterprise initiatives to ensure information security compliance.
- Assist business units with defining business processes, identifying potential areas for ongoing improvement or re-engineering, and implementing solutions that fulfill information security compliance and auditing requirements.
- May perform hands-on Analyst role by documenting and analyzing requirements (e.g. business system, security, and reports), developing business process flows, and assisting with remediation, testing, training, and other needs necessary to become/remain compliant with information security program mandates.
- Perform hands-on PM role for information security compliance initiatives by developing project plans, cost estimates, or other resource estimates; providing direction to matrixed project resources as necessary; and preparing for contingencies.
- May provide ad-hoc support/guidance to requests, determining an appropriate course of action using expert resources as necessary and implementing a solution.
- Participate in industry conferences and forums that contribute to the advancement of physical and electronic information security, compliance, and audits as necessary to fulfill position requirements.
- Other tasks and duties as needed to support the team and/or business.
- Travel as required.
- May supervise others.
Education & Years of Experience:
BS in Computer Science, information technology, Cybersecurity, or related field / education / training / experience. A minimum of 5 years of experience in cybersecurity, compliance, information technology, or similar role.
Qualifications:
- CMMC-AB Registered Practitioner (RP) certification preferred.
- Strong knowledge of data privacy laws and other relevant state and federal regulations (NIST).
- A solid understanding of cybersecurity frameworks, standards, and best practices (CMMC).
- Excellent written and verbal communication, analytical, and problem-solving skills.
- A high level of integrity, professionalism, and confidentiality.
- Strong technical skills and proficiency in Microsoft Office 365 products (MS Teams, SharePoint, Word, Excel, Outlook, etc.).
- Proficiency in Power BI, Power Automate, Power Apps and other Power Platform applications.
- Certification in cybersecurity or compliance (CISSP, CISM, CISA, CRISC).
Haskell offers a very robust and comprehensive benefits package! Some of our offerings are:
- Health, dental, and vision insurance plans
- Company provided hospital indemnity, accident and critical care plans
- Retirement savings plan (401k) with company discretionary matching contributions
- Employee Stock Ownership Plan
- Paid time off and nine company holidays
- Professional development and training opportunities to enhance your skills and advance your career
- Flexible work hours and remote work options
- Employee assistance programs for physical and mental well-being
- Opportunities for growth and advancement within the organization
Environmental Factors and/or Physical Requirements:
While performing the duties of this job, this position is required to have ordinary ambulatory skills sufficient to visit other locations; and the ability to stand, walk, stoop, kneel, crouch, and manipulate (lift, carry, move) light to medium weights of 10-50 pounds. Requires good hand-eye coordination, and arm, hand and finger dexterity, including the ability to grasp, and visual acuity to use a keyboard, operate equipment and read application/form information. The associate frequently is required to sit, reach with hands and arms, talk, and hear.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities:
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, citizenship, disability, or protected veteran status. Haskell will make reasonable accommodations in compliance with the Americans with Disabilities Act of 1990 and the Americans with Disabilities Act Amendments Act of 2008. The job description will be reviewed periodically as duties and responsibilities change with business necessities. Essential and marginal job functions are subject to modification.
Haskell is a Drug-Free Workplace.
#LI-JP1
#LI-Onsite
#LI-MSR