Infosec Risk and Compliance Specialist

Apply Online

Tyler Technologies is looking for an Information Security Risk & Compliance Specialist to join our Corporate Security team! As an Information Security Risk & Compliance Specialist reporting to the Manager of Information Security Compliance, you'll be instrumental in ensuring Tyler's compliance with regulations, frameworks, standards, and client agreements. You'll also be vital in administering and enforcing Tyler Technologies' Enterprise Information Security Program to safeguard the company's infrastructure and critical assets. Collaborating with various teams, you'll ensure that policies and procedures are not only in place but also effectively implemented and upheld.

The Information Security Risk & Compliance Specialist holds a critical enterprise-level position, tasked with assessing if the organization meets various regulations, frameworks, standards, and client agreements consistently across all operations. They are responsible for ensuring that the organization's information security policies and procedures align with pertinent laws, regulations, and industry standards.

As a part of Tyler's corporate staff, you will make an impact on outcomes that affect various areas of the company. Your work will ultimately support our team members, clients, stakeholders, and the public sector.

• Support the process of standardizing and streamlining annual and ad-hoc information security audits and assessments in compliance with FedRAMP, CJIS, SSAE-18 SOC 1 and SOC2 PCI and other requirements as necessary
  
• Conducting comprehensive risk assessments to identify potential security threats and vulnerabilities within the organization's systems, networks, and processes.
  
• Develop and implement strategies to mitigate identified risks.
  
• Plan and execute regular compliance audits to assess adherence to security policies and procedures.
  
• Review and analyze audit reports, and recommend corrective actions as needed.
  
• Assist in the monitoring and enforcement of compliance to security policies
  
• Assist with contract and vendor management issues related to security requirements and projects
  
• Assist with oversight and execution of Enterprise Risk and Vendor management procedures
  
• Evaluate and monitor the security practices of third-party vendors and partners.
  
• Ensure that vendors comply with the organization's security requirements.
  
• Aid in the development, evaluation and implementation of governance and compliance processes to mitigate cybersecurity risk and ensure protection of company assets and information
  
• Researches and interprets current and pending laws and regulations, industry standards and client and vendor commitments to understand and communicate compliance requirements
  
• Consults with business and technical leadership to ensure that data, processes and technology are designed for data protection and compliance by working with IT teams to implement and maintain security controls, such as firewalls, encryption, access controls, etc., as per compliance requirements.
  
• Lead or assist in responding to security incidents, including investigation, containment, eradication, and recovery.