ALBUM

Responsibilities

• Strategize and outline goals and objectives of the GRC (IT Audit and Risk management) programs.
• Assist with security efforts to meet HIPAA, SOC 2 Type I & II, GDPR, CCPA/CPRA, CJIS and other compliance requirements.
• Lead and perform audits to determine compliance with state and federal laws, rules, and regulations.
• Plan and organize CJIS audit and training procedures, programs, services, and activities.
• Work directly with Information Security, Legal, HR, Compliance and Development teams to ensure secure IT and IS best practices are fully adopted at Filevine.
• Assess, prioritize, and assist with managing risks on identified vulnerabilities.
• Provide privacy audits and compliance assessments for Filevine business units
• Perform on-going security auditing and testing to improve software security.
• Review audit, compliance and risk assessment issues that arise and manage them to resolution.
• Provide audit frameworks and risk assessment methodologies contemplating new software solutions to help mitigate security vulnerabilities and other business risks.
• Maintain documented Policy and Procedure libraries for compliance purposes.
• Complete Third-party vendor risk management and security questionnaires for Filevine.
• Provided annual Internal audit and risk assessment functions.
• Facilitate and lead annual penetration testing and auditing efforts.
• Develop a familiarity with new auditing and risk assessment tools and techniques.