Flatirons Solutions seeks a Compliance Excellence Associate in our Chennai, India office. Are you a leader passionate about driving business compliance to reduce loss of margins, loss of customers, loss of trust, and loss of business through the reduction of risks? Do you strive to raise the standards and ability of people and organizations to achieve excellence?
The Compliance Excellence Associate will be part of the Operational Excellence (OpEx) team and report to the Operational Excellence Associate Director. The OpEx team drives effectiveness, efficiency, and compliance throughout our global organization. We don�t tell teams what to do. We are here to help what teams do, better!
We are looking for someone who:
- Has a passion and track record for establishing and improving governance, risk, and compliance (GRC)
- Has hands-on experience with regulatory requirements in privacy information management (e.g., ISO 27701, GDPR, DPDPA)
- Has hands-on experience with conducting internal audits and hosting external audits
- Has hands-on experience performing risk assessments
- Can read, understand, interpret, and convey contractual, statutory, and regulatory obligations
- Can apply continual improvement methodologies to support contractual, regulatory, security, privacy, social, and sustainability objectives
- Has strong organizational skills with the ability to prioritize tasks and manage multiple projects simultaneously to meet deadlines.
- Has excellent communication skills and puts their customers first.
- Is self-motivated, can work independently, and operates with a high level of integrity
- Drives results with measurable achievements.
What you need to know (experience requirements):
- A bachelor�s degree in engineering, risk management, compliance, or regulations
- Two (2) or more years of experience in a related field
- Working Knowledge with developing, implementing, and maintaining a global GRC strategy.
- Working Knowledge of data privacy laws and regulations and protecting personal information.
- India�s Digital Personal Data Protection Act (DPDPA)
- European Union�s (EU) General Data Protection Regulation (GDPR)
- Working Knowledge managing contractual, statutory, regulatory, legal, and compliance requirements.
- Working knowledge with implementing or maintaining International Organization for Standardization (ISO) ISO 27001 and/or ISO 27701 certifications
- Proficient with the features of Microsoft Office (Word, Excel, PowerPoint, Outlook) and web-based applications.
What will set you apart:
- Passion and knowledge of corporate social responsibility (CSR) objectives such as:
- Labor and Human Rights
- Environment (GHG and carbon footprint)
- Ethics
- Sustainability
- Knowledge of security regulations and standards such as, but not limited to:
- United States (US) Department of Commerce (DOC) National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) or other Special Publications (SP) such as 800-53 and 800-171
- US Department of Defense (DOD) Cybersecurity Maturity Model Certification (CMMC)
- United Kingdom (UK) Cyber Essentials Scheme or Cyber Assessment Framework.
- Knowledge using continual improvement tools and methodologies such as:
- Lean
- Six Sigma
- Capability Maturity Model Integration (CMMI)
- Visual management.
- Knowledge of the aviation, aerospace, or defense sectors
- Certifications such as:
- Privacy Certifications (e.g., CIPM, CIPP/E) or equivalent
- ASQ Certifications (e.g., CMQ/OE, CQA, CSQE, CSQP) or equivalent
- Six Sigma Green or Black Belt Certifications (CSSGB or CSSBB).