Compliance Manager (BB-07A89)

Found in: Neuvoo IN



This is an environment unlike anything in the high-tech world and the secret of CGS success is its culture. The value CGS puts on its employees is well documented in articles from a variety of publishers including Bloomberg and Forbes. Our employees and our members come FIRST. CGS is well known for its generosity and community service and has won many awards for its philanthropy. The company joins with its employees to take an active role in volunteering by sponsoring many opportunities to help others.
CGS IT is responsible for the technical future of CGS Wholesale, the second largest retailer in the world with wholesale operations in twelve countries. Despite our size and explosive international expansion, we continue to provide a family, employee centric atmosphere in which our employees thrive and succeed. As proof, CGS consistently ranks in the top five of Forbes "America's Best Employers".

The Information Security Compliance team is responsible for the ongoing development and maintenance of sustainable compliance programs mandated by established security regulations or standards (PCI, HIPAA, PII, PIPEDA,Privacy, GDPR, etc.) and supplemented by CGS's own data security best practices.

The Information Security Compliance Manager (PCI/SOC/RISK) will support this effort by leading the team that

1) defines and reports on compliance metrics and risks

2) facilitates the communication of findings to control owners and stakeholders

3) identifies weaknesses in control structures

4) coordinates effective remediation with control owners with primary focus in the PCI/SOC/Risk space. In addition, the Manager will guide the team in moving to a continuous, integrated and proactive approach to Compliance and Risk. The benefit of this effort is to reduce risk to CGS that could result in reputational damage or disruption of business operations.

If you want to be a part of one of the BEST "to work for" companies in the world, simply apply and let your career be reimagined.


  • Reports on the status of compliance to Information Security leadership and IT management.
  • Establishes and Manages information security continuous compliance program.
  • Balances information security compliance risks and business constraints to provide risk-based mitigation recommendations to management.
  • Provides visibility into current compliance status through timely tracking, trending, & escalation of issues.
  • Responsible for hiring, training, and mentoring team members.
  • Responsible for communicating and making presentations, as required, to mid-and upper-level management and other personnel.
  • Day to day activities generally involve setting goals, establishing outcome goals, process goals, and key metrics, determining actions to achieve the goals, and mobilizing resources to execute the actions.
  • Upholds policy, standard, and procedures.
  • Sets performance expectations of team members; provides coaching throughout the work lifecycle process.
  • Required:

  • 10+ years of IT Experience.
  • 8+ years of IT Compliance/Privacy experience.
  • Strong understanding of InformationSecurity Governance, Risk and Compliance frameworks, methodologies and practices.
  • At least two years of experience leading Privacy or Compliance functional teams in a professional services, management, or supervisory role.
  • Proficient understanding of evolving Information Security regulations and best practices.
  • Excellent troubleshooting skills and the ability to logically think through problem situations.
  • Excellent verbal and written communication skills related to compliance, risk and security.
  • Able to work effectively and produce consistent results with a minimum of supervision.
  • High level of personal integrity and the ability to handle confidential matters with proper judgment.
  • Demonstrates a positive attitude, is self-motivated, responsible, conscientious, and detail oriented.
  • Able to work well under stress and handle crisis situations professionally.
  • Excellent English communication skills.
  • Recommended:

  • Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) and/or Certified Information Systems Auditor (CISA) status or equivalent experience.
  • Ability to explain complex technical problems to a non-technical audience.
  • calendar_today2 days ago

    Similar jobs

    location_onHyderabad, India

    work CGS

    I expressly authorise the Terms and Conditions