Whatsapp
Posted : Monday, June 10, 2024 05:16 PM
WHO WE ARE
We’re a global team of over 25,000 engineering, manufacturing, supply chain and sustaining service experts who partner with customers to bring their products to life through inspired innovation and world-class customer service.
From surgical devices and health monitors to warehouse robotics and space products, we partner with our customers to help create the products that build a better world.
Whether you’re looking to start, make a change or advance your career, find your path at Plexus Corp.
and make an impact.
WHY WE LOVE IT Engaging and challenging projects that fulfill and develop you.
People that inspire and empower you to realize your full potential.
Leadership and development programs to support your career goals.
We believe that our people create our best Plexus.
At Plexus, we value the ideas generated by our collective uniqueness and recognize that the diverse backgrounds, life experiences and perspectives of our team members enable us to create the innovative products that build a better world.
Because of this, we encourage people of all backgrounds to apply to our positions, and will look at candidates holistically, balancing work, education and additional experiences.
HOW YOU WILL DO IT Purpose Statement: This position is responsible for leading the Governance, Risk and Compliance program for Plexus data and information technology resources as part of the legal and compliance team.
This role is directly responsible for driving accountability to, and assisting control owners with the development, maintenance and improvement of processes, procedures and IT internal controls to align with Plexus policies, applicable regulatory and legal requirements, and pertinent industry best practices.
The IT GRC Senior Analyst will work in support of applicable frameworks and regulatory standards including, but not limited to, SOX, ISO, CMMC, DFARS, NIST, GDPR, etc.
, providing subject matter expertise.
This role collaborates with cross-functional stakeholders such as internal and external audit teams, various technology teams, and other key stakeholders to ensure strict compliance with relevant IT GRC sections of applicable regulations, laws and industry frameworks.
Key Job Accountabilities: COMPLIANCE: Assist control owners on the design of technology and information internal controls, self-testing operational control effectiveness and any control improvement or remediation.
Act as liaison between audit teams and control owners during activities in support of assessing IT internal controls.
Consult with project teams such that IT internal control strategies are incorporated into the development and implementation of business process and solutions.
RISK MANAGEMENT: Assist global technology and business leaders with their IT risk management program.
Leverage continuous improvement within business operations to define, meet and sustain or mitigate risk levels associated with technology and information.
GOVERNANCE: Assist in creating policies related to: information protection and data privacy, cybersecurity, and global regulatory compliance.
DOCUMENTATION, TRAINING and METRICS: Manage controlled documents and assist control owners with appropriate context and periodic review.
Serve as point of contact for external requests of control attestation or certifications.
ORGANIZATION: Partner effectively and efficiently with global teams to enhance business processes, ensuring that required technology and information controls, compliance, and regulatory standards are met and support application, infrastructure and business needs.
Communicate to various levels of the organization as needed such as user trainings, leadership briefings, and external compliance groups.
Additional Accountabilities: In-depth understanding of in scope regulatory and privacy laws, internal control and information security frameworks, as well as industry, governmental, and privacy frameworks.
Support compliance activities and lead as needed with quality evaluations, control development, and control testing.
Recommend enhancements to existing governance, risk or compliance solutions to improve overall enterprise compliance to both internal and external policies and requirements.
Lead facilitation of annual IT control walkthrough process including control activity reviews, process documentation updates, test scripts updates and any other supporting documentation requirements.
Assist and consult with the facilitation of related regulatory, customer or legal compliance reviews, control activity reviews, process documentation updates, test scripts updates and any other supporting documentation requirements.
Minimal travel may be required to meet the needs of the business.
Additional duties as assigned.
Education/Experience Qualifications: Bachelor’s degree is required.
Minimum 5 years of related experience is required.
Relevant certification such as CISSP or CISA is desirable.
An equivalent combination of education and experience sufficient to successfully perform the key job accountabilities may be considered.
Other Qualifications: Knowledge of regulatory compliance, standards, and frameworks such as SOX, ISO, NIST, GDPR, etc.
Proven understanding of information security risk assessment and risk management procedures and methodologies.
Knowledge or experience with diverse architectures, external hosted services, and cloud computing environments.
Functional understanding and knowledge of internal control and information protection and privacy principles, standards, and processes.
Excellent verbal and written communication skills.
Strong organizational skills with attention to detail.
Ability to influence without authority.
Ability to react to high-pressure dynamic changing environments.
Ability to multi-task, problem solve and meet deadlines.
Physical Requirements: General office equipment and materials.
Work Environment: The work setting should consist of an office environment with suitable lighting, comfortable temperatures, and a low noise level.
This document does not represent a contract of employment and is not intended to capture every possible assignment the incumbent could be asked to perform.
Some offers of employment are contingent upon successfully passing a drug screen and upon completion of a confidentiality agreement.
Our Values and How We Lead behaviors guide our processes.
Plexus does not make employment decisions based on race, color, religion, national origin, sexual orientation, gender identity, disability, or veteran status.
We are proud to be an Equal Opportunity Employer (EOE) and encourage all to apply today! Globally, our policy is to recruit people from wide and diverse backgrounds.
However, our company does not typically undertake sponsorship, including for H-1B, TN, and other nonimmigrant visas.
Additionally, certain positions require access to controlled goods and technologies subject to the International Traffic in Arms Regulations (ITAR) or Export Administration Regulations (EAR).
Applicants for these positions may need to be “U.
S.
persons.
” “U.
S.
persons” are generally defined as U.
S.
citizens, nationals, lawful permanent residents (or, green card holders), individuals granted asylum, and individuals admitted as refugees.
From surgical devices and health monitors to warehouse robotics and space products, we partner with our customers to help create the products that build a better world.
Whether you’re looking to start, make a change or advance your career, find your path at Plexus Corp.
and make an impact.
WHY WE LOVE IT Engaging and challenging projects that fulfill and develop you.
People that inspire and empower you to realize your full potential.
Leadership and development programs to support your career goals.
We believe that our people create our best Plexus.
At Plexus, we value the ideas generated by our collective uniqueness and recognize that the diverse backgrounds, life experiences and perspectives of our team members enable us to create the innovative products that build a better world.
Because of this, we encourage people of all backgrounds to apply to our positions, and will look at candidates holistically, balancing work, education and additional experiences.
HOW YOU WILL DO IT Purpose Statement: This position is responsible for leading the Governance, Risk and Compliance program for Plexus data and information technology resources as part of the legal and compliance team.
This role is directly responsible for driving accountability to, and assisting control owners with the development, maintenance and improvement of processes, procedures and IT internal controls to align with Plexus policies, applicable regulatory and legal requirements, and pertinent industry best practices.
The IT GRC Senior Analyst will work in support of applicable frameworks and regulatory standards including, but not limited to, SOX, ISO, CMMC, DFARS, NIST, GDPR, etc.
, providing subject matter expertise.
This role collaborates with cross-functional stakeholders such as internal and external audit teams, various technology teams, and other key stakeholders to ensure strict compliance with relevant IT GRC sections of applicable regulations, laws and industry frameworks.
Key Job Accountabilities: COMPLIANCE: Assist control owners on the design of technology and information internal controls, self-testing operational control effectiveness and any control improvement or remediation.
Act as liaison between audit teams and control owners during activities in support of assessing IT internal controls.
Consult with project teams such that IT internal control strategies are incorporated into the development and implementation of business process and solutions.
RISK MANAGEMENT: Assist global technology and business leaders with their IT risk management program.
Leverage continuous improvement within business operations to define, meet and sustain or mitigate risk levels associated with technology and information.
GOVERNANCE: Assist in creating policies related to: information protection and data privacy, cybersecurity, and global regulatory compliance.
DOCUMENTATION, TRAINING and METRICS: Manage controlled documents and assist control owners with appropriate context and periodic review.
Serve as point of contact for external requests of control attestation or certifications.
ORGANIZATION: Partner effectively and efficiently with global teams to enhance business processes, ensuring that required technology and information controls, compliance, and regulatory standards are met and support application, infrastructure and business needs.
Communicate to various levels of the organization as needed such as user trainings, leadership briefings, and external compliance groups.
Additional Accountabilities: In-depth understanding of in scope regulatory and privacy laws, internal control and information security frameworks, as well as industry, governmental, and privacy frameworks.
Support compliance activities and lead as needed with quality evaluations, control development, and control testing.
Recommend enhancements to existing governance, risk or compliance solutions to improve overall enterprise compliance to both internal and external policies and requirements.
Lead facilitation of annual IT control walkthrough process including control activity reviews, process documentation updates, test scripts updates and any other supporting documentation requirements.
Assist and consult with the facilitation of related regulatory, customer or legal compliance reviews, control activity reviews, process documentation updates, test scripts updates and any other supporting documentation requirements.
Minimal travel may be required to meet the needs of the business.
Additional duties as assigned.
Education/Experience Qualifications: Bachelor’s degree is required.
Minimum 5 years of related experience is required.
Relevant certification such as CISSP or CISA is desirable.
An equivalent combination of education and experience sufficient to successfully perform the key job accountabilities may be considered.
Other Qualifications: Knowledge of regulatory compliance, standards, and frameworks such as SOX, ISO, NIST, GDPR, etc.
Proven understanding of information security risk assessment and risk management procedures and methodologies.
Knowledge or experience with diverse architectures, external hosted services, and cloud computing environments.
Functional understanding and knowledge of internal control and information protection and privacy principles, standards, and processes.
Excellent verbal and written communication skills.
Strong organizational skills with attention to detail.
Ability to influence without authority.
Ability to react to high-pressure dynamic changing environments.
Ability to multi-task, problem solve and meet deadlines.
Physical Requirements: General office equipment and materials.
Work Environment: The work setting should consist of an office environment with suitable lighting, comfortable temperatures, and a low noise level.
This document does not represent a contract of employment and is not intended to capture every possible assignment the incumbent could be asked to perform.
Some offers of employment are contingent upon successfully passing a drug screen and upon completion of a confidentiality agreement.
Our Values and How We Lead behaviors guide our processes.
Plexus does not make employment decisions based on race, color, religion, national origin, sexual orientation, gender identity, disability, or veteran status.
We are proud to be an Equal Opportunity Employer (EOE) and encourage all to apply today! Globally, our policy is to recruit people from wide and diverse backgrounds.
However, our company does not typically undertake sponsorship, including for H-1B, TN, and other nonimmigrant visas.
Additionally, certain positions require access to controlled goods and technologies subject to the International Traffic in Arms Regulations (ITAR) or Export Administration Regulations (EAR).
Applicants for these positions may need to be “U.
S.
persons.
” “U.
S.
persons” are generally defined as U.
S.
citizens, nationals, lawful permanent residents (or, green card holders), individuals granted asylum, and individuals admitted as refugees.
• Phone : NA
• Location : Neenah, WI
• Post ID: 9001401800
