DETAILED RESPONSIBILITIES/DUTIES:
• Implement and maintain GTS Risk Management Program
• Drive GTS risks, controls, and compliance program
• Conduct statistical analyses to determine potential risk and advise leadership
• Track and maintain operational risk register
• Capture data SOX compliance and maintain related reports
• Ensure data integrity and quality of data reporting prior to distribution
• Create risk reports and dashboards for leadership
• Create relevant training material and memos to support regulatory and operational compliance awareness
• Coordinate with reporting analysts to communicate analysis to leadership
• Coordinate with cross-functional members across GTS functions to collect data
• Coordinate with Vendor Management Analyst to identify potential areas of vendor risk and drive mitigation actions
• Ensures SOX compliance; tracks deficiencies and drives mitigation actions
• Acts as internal and external liaison with auditors
• Assist in the development and ongoing review of security policies standards, and procedures in partnership with relevant GTS and Herbalife Nutrition organizations
• Serves as advisor to GTS Leads in terms of compliance and operational risk
• Performs additional duties as assigned
SUPERVISORY RESPONSIBILITIES:
None
QUALIFICATIONS:
Skills:
Required
• Proficient in related analysis and risk assessment tools
• SOX and GRC (governance, risk, and compliance) experience is a must
• Communication skills to relay results of analysis
• Ability to build strong relationships across various functions of GTS to be able to preemptively identify and communicate risks
Certificates / Training:
Required
• IT, risk and security practices, standards and controls (e.g. COBIT, NIST-CSF, CIS-CSC, C2M2, CSOE, ITIL).
Preferred
• Certified Information Systems Auditor (CISA)
Experience:
Level III
• 5+ years in IT security, risk, controls, audit and regulatory compliance a related role
• Preferred: management experience in an IT security, risk, controls, audit and regulatory compliance setting
Education:
Required
• Bachelor’s in computer science, risk management, or related degree
Principles & Related Competencies:
Ethical
• Complies with policies and procedures; Takes the high road and upholds our values; Maintains confidentiality; Acts with integrity, honesty and respect.
Leader
• Meets challenges head on to uphold quality standards, productivity goals, and values; Sets an example, building a culture of trust, transparency, and open communication; Is aligned with organizational direction
Collaborative
• Works cooperatively with others offers and accepts help; Freely shares information as appropriate; Open to and willing to provide feedback; Strong contributor to the team’s results; Celebrates the individual and the team; Ability to clearly communicate.
Looks Beyond Oneself
• (Team Player) Demonstrates humility and willingness to recognize and give credit to others; Works well alongside people of different backgrounds and ideas; Builds good relationships with others; Values Distributors and teammates.
Drives Innovation
• Add value through: Proposing ideas and creative solutions to employee, distributor and/or customer challenges; Listening to and respecting others ideas through collaborating and helping develop those suggestions; Driving ideas forward to implementation.
Delivers Change
• Delivers Change Through: Adapting to different working environments; Responding positively to change including new duties and assignments.