At RR Donnelley Polska we hire people who are willing to grow with the
company and build further IT skills while enjoying work with the new technology!
“RR Donnelley is committed to equality in employment”
Compliance Analyst
Miejsce pracy: Kraków
Job Purpose:
Position required to ensure compliance with internal and external IT governance standards across multiple infrastructure platforms & to create a standardized IT security compliant environment across all server disciplines for RRD EU.
Accountabilities & Responsibilities:
- Maintain current knowledge of IT controls required for
- accreditation to AT101, ISO27001 and PCI DSS.
- RR Donnelley’s Information Security Policy.
- Provide advice& guidance to all areas of IT Infrastructure in the application
- of security controls in accordance with accreditations & internal standards.
- Support and report on all internal and external IT security audits
- Investigate and oversee the implementation of security controls
- Manage, test and implement monthly security patch updates
- Manage, test and implement audit remediation
- Create management information for the status of system maintenance
- activities across all server technologies within RRD EU
- Understand and implement changes to the live operating environment in
- line with any updates or changes to RRD’s security obligations.
- Understand and action the RRD Security Incident Response Process
- (SIRP) as required
- Adhere to embedded ITIL processes
Competencies:
- Technical Expertise - Minimum 4 years experience of working in a
- technology delivery environment
- Relationship Management - Able to develop Stakeholder
- communication plans with good written and verbal communication,
- influencing and negotiation skills.
- Customer Management - good internal and external customer
- communication skills. Able to lead a client technical requirements
- workshop.
- Project Management - Understands PM methods; able to support
- Project manager in the area of project documentation.
- Business Process Engineering – ability to understand and document
- client processes. Capable to analyze, convince stakeholders and
- introduce process improvements.
- Quality Management - Understands RRD Quality policy and able to
- follow standard operating procedures.
Skills:
- Thorough knowledge of Windows operating systems
- Understanding of AIX, Linux and zOS operating systems
- Strong knowledge of common LDAP security systems and procedures
- Strong knowledge AT101, PCI DSS and ISO27001 accreditations
- Strong knowledge of hypervisor technology and security controls
- Strong knowledge of network security controls
- Thorough documentation creation skills
- Strong communication, interpersonal, customer service
- String analytical skills
- Experienced in audit interviews and supporting penetration testing.
- Good organizational skills, ability to set priorities and deliver on time
- Strong adherence to quality processes
- Understanding of right first time approach
- Minimum of 4 years experience in a similar technical role
- Experience of ITIL and Prince 2 methodologies.