Sr IT Compliance Analyst

| Greater Boston Area
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Our Opportunity:

Chewy is looking for a Senior IT Governance, Risk & Compliance (GRC) Analyst to join our Information Technology Team based in Boston, MA or Dania Beach, FL and the ideal candidate would be able to:

What you'll do:

  • Oversee processes on development and maintenance of information security policies, standards, and procedures to address risk and security compliance requirements;
  • Work with IT Leadership to support the execution of strategies and objectives in accordance with IT Compliance frameworks, guidelines and requirements;
  • Advise and train IT process owners on best practices related to IT General Controls, IT security, remediation of any issues and deficiencies;
  • Conduct risk assessments of information systems which includes creating asset profiles, evaluating threat likelihood and impact, and identifying mitigating controls to determine inherent and residual risk to systems;
  • Help IT management to maintain an effective SOX control environment and ensure adequate controls are in place to mitigate risks;
  • Support ongoing internal audit reviews to ensure all required documentation is provided
  • Work with the IT Teams in the completion of the SOX certification for new systems and during significant upgrades/updates of existing systems;
  • Monitor and test IT compliance metrics for SOX, PCI, Cybersecurity, and Privacy to ensure the program is meeting regulatory requirements and internal corporate goals and timelines;
  • Lead the ongoing development, implementation, and enforcement of security awareness training programs, requirements and initiatives;
  • Develop training, newsletters and other educational material that is engaging and promotes adoption of security & compliance best practices;
  • Responsible for supporting Data Privacy activities including PCI and CCPA compliance.
  • Review SSAE 18 and/or third-party assessments/reviews performed by external parties.

Must have(s):

  • Sustainable knowledge of compliance requirements associated with SOX (ITGCs & ITACs), Cybersecurity and PCI;
  • Extensive knowledge of general information security best practices and standards such as ISO 27000, COBIT 5, NIST SP 800 series, NIST CSF;
  • Solid knowledge/experience in Software development life cycle, DevOps, networks, databases, operating systems, application controls and IT operations;
  • General understanding of internal audit methodologies and processes;
  • Work with Internal Audit, external auditors, IT management and staff to identify feasible implementation of controls and resolutions to manage weaknesses and create opportunities for improvement;
  • Ability to create and maintain IT policies & procedures, management and executive level reports on effectiveness of IT governance controls and exceptions;
  • Excellent interpersonal and presentation skills.
  • Ability to perform assigned tasks and responsibilities with moderate supervision, which includes planning, executing and reporting on required compliance tasks within assigned timelines
  • 5+ years of IT experience covering Internal or External IT audit, Risk Management, vulnerability management, data security, regulatory compliance, vendor management, incident response
  • Bachelor’s Degree in Information Systems, Risk Management, Business Administration, or a related field
  • At least one of the following certifications: CISA, CISM or CISSP

Nice to have(s):

  • Prior experience in eCommerce or start-up organization
  • Prior experience with implementing Service Now, GRC tool or ITSM solutions
  • Prior experience in automating controls and control testing, data analytics and Agile methodology
  • Prior experience in the following areas: risk management, internal or external IT audit, vulnerability management, data security, regulatory compliance, vendor management, incident response
  • ITIL, PMP, Six Sigma certification a plus.

If you have a disability under the Americans with Disabilities Act or similar law, or you require a religious accommodation, and you wish to discuss potential accommodations related to applying for employment at our company, please contact [email protected]

To access Chewy’s Privacy Policy, which contains information regarding information collected from job applicants and how we use it, please click here: Chewy Privacy Policy (https://www.chewy.com/app/content/privacy).

Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • JavaLanguages
    • JavascriptLanguages
    • KotlinLanguages
    • PHPLanguages
    • RLanguages
    • ScalaLanguages
    • SqlLanguages
    • SwiftLanguages
    • jQueryLibraries
    • VueJSLibraries
    • AngularJSFrameworks
    • DjangoFrameworks
    • HadoopFrameworks
    • Node.jsFrameworks
    • SpringFrameworks
    • GRPCFrameworks
    • Microsoft SQL ServerDatabases
    • MySQLDatabases
    • OracleDatabases
    • PostgreSQLDatabases
    • RedisDatabases
    • VerticaDatabases
    • AerospikeDatabases
    • Google AnalyticsAnalytics
    • BalsamiqDesign
    • IllustratorDesign
    • InVisionDesign
    • PhotoshopDesign
    • SketchDesign
    • UXPinDesign
    • ConfluenceManagement
    • JIRAManagement
    • dotCMSCMS

Location

Located in the Fort Point neighborhood, home to many of Boston's hip and upcoming restaurants along with emerging technology companies.

An Insider's view of Chewy

How would you describe the company’s work-life balance?

It's refreshing being a part of a team dedicated to getting the job done, without quilting you into extra hours. While we are in the retail space, we are always supportive of the team's needs. I don't feel guilty about asking for help if I'm pressed for time and need to get back to my family. The flexibility around working from home has been great

Marcus

Senior Product Manager

What projects are you most excited about?

Our team loves working on new app features that are requested by our customers! We get the most excited when our app users send us a request and then that idea comes to life in the next app update. We take our customer’s feedback very seriously!

Eliza

Mobile Product Manager

How has your career grown since starting at the company?

Chewy gives a significant amount of freedom and autonomy to do your best work. I am able to pursue the most important objectives, and work that I really enjoy. It’s an amazing feeling to see your hard work pay off immediately and have a positive impact on the team—and something that makes life at Chewy really unique!

Rich

Human Resources Business Partner

How do you make yourself accessible to the rest of the team?

Aside from the standard 1x1s and team meetings: 24/7 via text, email, chat, voice and during business hours by walking around the office engaging in conversation, listening to current challenges and proposed solutions.

Mike

VP, Software Engineering

What are Chewy Perks + Benefits

Chewy Benefits Overview

We got you covered when it comes to competitive salaries, unlimited time off, medical & dental insurance, 401k and happy hour. True to our business, we're pet-friendly and have fun pet-related perks like Paw-ternity leave for new pup parents. Of course, the biggest perk is being able to work alongside smart, driven and passionate team members who are changing the world every day.

Culture
Volunteer in local community
Partners with Nonprofits
Friends outside of work
Eat lunch together
Intracompany committees
Daily stand up
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Pair programming
Open office floor plan
Diversity
Highly diverse management team
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
We offer a commuter transit, parking, and dependent care FSA.
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Family Medical Leave
Return-to-work program post parental leave
Vacation & Time Off Benefits
Unlimited Vacation Policy
Paid Holidays
Paid Sick Days
Employees receive 40 hours per year of paid sick leave.
Perks & Discounts
Beer on Tap
Casual Dress
Commuter Benefits
Company Outings
Game Room
Our game room includes Ping Pong, Pool Table, Foosball, Video Games.
Stocked Kitchen
Some Meals Provided
Happy Hours
Pet Friendly
Recreational Clubs
Chewy sponsors office sports leagues year-round.
Relocation Assistance
Professional Development Benefits
Job Training & Conferences
Diversity Program
Lunch and learns
Cross-functional lunch and learns.
Cross functional training encouraged
Promote from within
Mentorship program
Our mentorship program includes 1-to-1 program, Career mentoring, Leadership mentoring.
Online course subscriptions available
Customized development tracks
More Jobs at Chewy44 open jobs
All Jobs
Data + Analytics
Dev + Engineer
HR
Marketing
Operations
Product
Content
Developer
new
Boston
Data + Analytics
new
Boston
Data + Analytics
new
Boston
Data + Analytics
new
Boston
Developer
new
Boston
Developer
new
Boston
Operations
new
Boston
Data + Analytics
new
Boston
Data + Analytics
new
Boston
Developer
new
Boston
Developer
new
Boston
Operations
new
Boston
Product
new
Boston
Product
new
Boston
Operations
new
Boston
Data + Analytics
new
Boston
Developer
new
Boston
Developer
new
Boston
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView Chewy's full profileSee more Chewy jobs