IS Regulatory Compliance Analyst - IS Security - Full Time 8 Hour Days (Non-Exempt) (Non-Union)

The Information Security Regulatory Compliance Analyst is responsible for ensuring that the organization's information security policies and practices comply with relevant laws, regulations, and standards. This role involves conducting audits, managing compliance activities, and providing guidance and validating adherence to regulatory requirements.

Essential Duties:

• Keep current on relevant information security regulations, standards, and best practices (e.g., NIST, HIPAA, HICP).
• Interpret and implement regulatory requirements to ensure organizational compliance.
• Translate security-related matters into business terms that can be easily understood by executives and stakeholders as necessary.
• Aid in the development, review, and updates to information security policies and procedures to align with regulatory requirements.
• Ensure documentation is accurate and reflects current practices.
• Assist with internal audits and assessments to evaluate compliance with regulatory requirements and company policies.
• Perform self-assessments to identify areas of non-compliance and recommend corrective actions.
• Assist with the development and delivery of training programs to educate employees about regulatory requirements and information security best practices.
• Promote awareness of compliance issues and foster a culture of security.
• Work closely with IT, legal, and other departments to ensure compliance with information security requirements.
• Prepare reports and documentation for internal and external stakeholders.
• Support the incident response team in managing and reporting security incidents, ensuring compliance with regulatory notification requirements.
• Maintain records of incidents and responses for auditing and reporting purposes.
• Monitor and assess changes in regulations and industry standards to ensure ongoing compliance.
• Recommend and implement improvements to security practices and compliance processes.
• Other duties as assigned.

Required Qualifications:

• Req Bachelor’s Degree In Information Security, Computer Science, Information Technology, or a related field.

• Req 3-5 years Experience in information security, compliance, or a related role
• Req Experience with compliance management and auditing.

• Req Strong understanding of information security frameworks and regulatory requirements.
• Req Demonstrate excellent customer service behavior.
• Req Organization/time management skills.
• Req Excellent analytical, problem-solving, planning and evaluation skills.
• Req Demonstrates excellent verbal and written communication skills.
• Req Able to function independently and as a member of a team.

Preferred Qualifications:

• Pref Specialty Certification Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or similar

Required Licenses/Certifications:

• Req Fire Life Safety Training (LA City) If no card upon hire, one must be obtained within 30 days of hire and maintained by renewal before expiration date. (Required within LA City only)

The hourly rate range for this position is $39.00 - $63.95. When extending an offer of employment, the University of Southern California considers factors such as (but not limited to) the scope and responsibilities of the position, the candidate’s work experience, education/training, key skills, internal peer equity, federal, state, and local laws, contractual stipulations, grant funding, as well as external market and organizational considerations.