Company Overview

Nuance Communications, Inc. is the pioneer and leader in conversational AI innovations that bring intelligence to everyday work and life. The company delivers solutions that understand, analyze and respond to human language, amplifying human intelligence. With decades of domain and artificial intelligence expertise, Nuance works with thousands of organizations – in healthcare, telecommunications, automotive, financial services, retail, and more – to create stronger relationships and better experiences for their customers.

The Nuance Global IT team is focused on supporting the company and employees with technical solutions and expertise that help the business run more efficiently, ensure security and data privacy, and support new IT infrastructure initiatives that drive innovation. Our team is composed of problem solvers with constant curiosity and different perspectives who love to collaborate to transform and rethink IT.

Job Summary

Summary: The Principal IT Information Security Analyst will be responsible for supporting the development, enforcement, maintenance and compliance of security program within the Nuance Enterprise business unit. This is an autonomous role where the successful candidate will take ownership of supporting relevant Enterprise compliance programs, policy and procedure development/management/compliance, pre-sales, legal collaboration and audit management.

Responsibilities:

•Lead efforts in industry standards and regulatory compliance such as ISO 27001/27002, PCI, and others
•A good understanding of the Data Protection and its implications for business. Able to provide appropriate advice and practical support for current and emerging data protection requirements
•Participate in the broader Information Security governance process with Nuance Corporate and Divisional Security leaders, as required 
•Lead and support internal/external audits, facilitate customer-driven and Third-party security audits/assessments
•Provide pre-sales support for Enterprise products and services, as needed
•Develop remediation plans in partnership with Legal, IT, Operations and other relevant groups

Qualifications

Number of Years of Work Experience: 8

Required Skills:

•8-12 years of related experience. 
•Knowledge and experience specific to managing and reporting internal controls
•Must be knowledgeable about ISO standards and PCI requirements, prior work experience in a PCI-compliant environment highly desirable
•Prior policy development and enforcement experience in a regulated environment
•Ability to translate business requirements and risks into policy and technology implementation
•Ability to understand technical implementations with proven technical experience
•Networking and infrastructure knowledge

Preferred Skills:

•Strong interpersonal skills with the ability to deal effectively with people at all organisational levels and external vendors
•Excellent oral and written communications skills with the ability to prepare and deliver concise, understandable reports and presentations
•CISSP, CISM and/or CISA (or equivalent)

Education: 4 Year / Bachelors Degree; Computer Science, Management Information Systems, Information Technology or a related discipline. 

Additional Information

Nuance offers a compelling and rewarding work environment. We offer market competitive salaries, bonus, equity, benefits, meaningful growth and development opportunities and a casual yet technically challenging work environment. Join our dynamic, entrepreneurial team and become part of our continuing success.  

Nuance Communication Inc.  is an equal opportunity employer.  We evaluate qualified applicants without regard to race, age, color, religion, sex, national origin, disability, veteran status, gender identity, sexual orientation and other legally protected characteristics. The EEO is the Law poster and its supplement is available here. If you need a reasonable accommodation because of a disability for any part of the employment process, please call 781-565-5086 – Human Resources Department and let us know the nature of your request and your contact information.