Lead Compliance Specialist

The Opportunity

Huron is redefining what a global consulting organization can be. Advancing new ideas every day to build even stronger clients, individuals and communities. We’re helping our clients find new ways to drive growth, enhance business performance and sustain leadership in the markets they serve. And, we’re developing strategies and implementing solutions that enable the transformative change they need to own their future.
As a member of the Huron corporate team, you’ll help to evolve our business model to stay ahead of market forces, industry trends and client needs. Our accounting, finance, human resources, IT, legal, marketing and facilities management professionals work collaboratively to support Huron’s collective strategies and enable real transformation to produce sustainable business results.
Join our team and create your future.

Position SummaryHuron Consulting Group’s Corporate Security and GRC team is tasked with managing and directing the global enterprise information security program. The team is responsible for the oversight and coordination of security efforts and Governance, Risk, and Compliance (GRC) across the company. Huron is looking to hire an Information Security – GRC (Senior Associate), that will work collaboratively within the Corporate Security GRC team, and with key stakeholders across the company including IT, HR, Legal, Finance, Procurement, and Business Units (BUs), including Consulting-Healthcare, Consulting-Education, and Digital.Qualifications

As a member of the GRC team, the successful candidate works to ensure Huron’s adherence to, and continuous improvement with certifications and regulations as well as data governance best practices. The hire will assist in cybersecurity and vulnerability management initiatives and ensure Huron complies with information security related frameworks and regulations, such as ISO27001, ISO22301, EU-US Privacy Shield, HIPAA, Sarbanes Oxley, CMMC, and FedRAMP.
Key Responsibilities:

• Design, establish, and maintain a comprehensive data governance framework, procedures to ensure data quality, security, and compliance.
• Monitor and audit data quality metrics, identifying and addressing data quality issues proactively. Create data governance and quality metrics and dashboard.
• Identifies data quality opportunities and drives adherence with data governance and quality initiatives.
• Collaborate with cross-functions, including technology and business teams to develop understanding of data governance policies, standards, and procedures aligned with industry best practices.
• Ensure adherence to regulatory requirements related to data governance, including privacy and security standards. Mitigate data-related risks through proactive assessment.
• Assist with compliance audits, including SOX, HIPPA, ISO, client, etc.
• Assist with RFP and contract reviews and assist with client audits by fulfilling document requests to ensure client contractual requirements are maintained.

Qualifications:

• In-depth knowledge of data governance frameworks, methodologies, and best practices, with a focus on Data Lake environments.
• Experience with data privacy, data protection and regulatory aspects of data governance, such as creating and implementing a data rights framework, including contractual requirements, controls set
• Experience developing data governance strategy, architecture, practices, and technology implementation
• Attention to detail and strong communication and documentation skills.
• Adept at multitasking and time management, with the ability to remain organized, calm under pressure, and meet deadlines.

Experience: 

• 2-4 years of experience in governance, risk, and compliance disciplines such as data governance, information security, audit, or technical writing. 

Education:  

• Bachelor’s degree in Business/ Management Information Systems, Computer Science, or related disciplines 
• Demonstrated progression in continuing education and/or certifications 

Skills: 

• Proficient with Microsoft Office Suite 
• Professional certification in Data Governance, Information Security, Risk Management or Audit (or willingness to achieve) a plus, such as CDMP, DGSP, CISM, CRISC, CISSP, HCISPP or Security +, CISA, Certified ISO 27001: 2022 Lead Auditor.
• Experience with a GRC tool a plus, preferably ServiceNow 
• Database experience a plus (i.e., Oracle, SQL Server)

Posting CategoryCorporateOpportunity TypeRegularCountryIndia