6897 - Corporate Manager - Global IT Governance, Risk, and Compliance

USA    |     Other   |   Full-time
Job Reference: 6897 - Posted 01-May-2022

Are you looking for a new challenge? Then we are looking for you to join Kelly Services as our Sr. Manager of Governance, Risk and Compliance.

 

In this role, you will lead all aspects of and provide direction for Kelly’s Global IT Risk & Compliance program for all regions, leading a global dedicated and dotted-line staff.

Kelly’s IT organization maintains its obligations related to controls around compliance within IT operations, projects, and technology. Additional obligations include contracts, consults on security and compliance language in customer contracts or RFPs. You will also lead IT focused audits, provide oversight of our global Disaster Recovery programs, and collaborate with and supports various compliance aspects of business operations.

This role works closely with the top leadership in IT, Internal Audit, Enterprise Risk Management, Finance, and HR.

Other areas of responsibility and or participation include:

  • Lead Kelly’s ongoing global Privacy & Security Awareness program
  • Responsible for access/account provisioning/de-provisioning
  • Works with Information Security and other IT teams as appropriate to develop and maintain company IT/Security policies and procedures

Essential Functions

  1. Ensure Kelly’s IT controls are adequately designed and implemented to address compliance requirements. Identify business and system changes that represent a SOX or Privacy impact. Document control design and ensure control owners are prepared to produce evidence for control testing by auditors.
  2. Develop an Identity & Access Management strategy (short and long-term) for Kelly within the constraints of annual budgets. Complete projects to achieve strategy goals. Serve as a main point of contact within the company for access/provisioning questions, issues, improvement requests.
  3. Work with Internal Audit, our SOX Auditors (PwC), and other External Auditors to ensure information requests are fulfilled, deficiencies are validated, and remediation plans are reasonable and understood. Lead all aspects of remediation of IT control deficiencies, providing guidance to the responsible IT team to understand controls requirements and purpose, to design, implement, and remediation plans.
  4. Work with Internal Audit, our SOX Auditors (PwC), and other External Auditor to ensure information requests are fulfilled, deficiencies are valid and remediation plans are reasonable and understood. Oversee remediation of IT control deficiencies, providing guidance to the responsible IT team/personnel to understand controls requirements and to design, and implement remediation plans.
  5. Assist with and provide evidence for various other audits such as customer audits or NIST assessment. Review vendor SOC1/SOC2 or other reports (NIST, ISO, COBIT, et.al) for adequate control coverage. Assists with implementation of internal frameworks to support internal SOC, ISO, or other certifications
  6. Lead Kelly's global Privacy & Security Awareness program. Supports Kelly’s Information Security initiatives on various assigned assignments; crafting content for the Executives and Board of Directors, working on data privacy improvements, global policy/procedure creation and maintenance, etc.

Experience

Minimum 8 years’ in IT Risk and Compliance role that includes knowledge and experience in the areas below.

Required:

  • Strong people management and interpersonal skills. Ability to direct a team, providing feedback and improvement opportunities as needed
  • Strong project management skills- ability to coordinate and lead projects
  • Experience with Sarbanes-Oxley (SOX) compliance including the internal and external audit process for a public company
  • Solid understanding of financial processes and controls
  • Strong written and verbal skills and able to work closely and expertly with Kelly leadership.
  • Ability to identify, define and implement process efficiencies and improvements and/or assist other responsible teams to do the same
  • Strong risk focused knowledge and application of Privacy regulations which includes US Federal and State privacy regulations and other industry specific such as (GDPR, HIPAA, CCPA, COPPA, FERPA, PCI, etc.)

Education

4 year degree in Accounting, Business Administration, Information Technology, or related field.



Your safety matters! Vaccination against COVID-19 may be a requirement for this job in compliance with current client and governmental policies. A Kelly recruiter will confirm and share more details with you during the interview process.

 

Benefits Program

  • Paid Time Off – we are now offering 3 weeks of PTO
  • Holidays we have increased our paid holidays to 8, with the addition of Martin Luther's King Birthday
  • Sick/Mental Health/Well-Being  five days
  • Floating holidays/Personal Significance – three days
  • Volunteer – one day
  • Healthcare – Medical, Dental, and Vision
  • 401(k) Match
  • Vacation Purchase  Program
  • Tuition Reimbursement
  • PerkSpot - Personal Online Discount Program

 

About Kelly Services®

 

Kelly connects talented people to companies in need of their skills in areas including Science, Engineering, Education, Office, Contact Center, Light Industrial, and more. We’re always thinking about what’s next in the evolving world of [1] work, and we help people ditch the script on old ways of thinking and embrace the value of all work styles in the workplace. We directly employ nearly 500,000 people around the world, and we connect thousands more with work through our global network of talent suppliers and partners in our [2] outsourcing and consulting practice.

 

[3] Kelly Services is an equal opportunity employer committed to employing a diverse, equitable, and inclusive workforce, including, but not limited to, race, gender, individuals with disabilities, protected veterans, sexual orientation, and gender identity. Equal Employment Opportunity is The Law.

References