Come work for us! We are looking for dedicated employees to join our team to help our customers have the best experience possible every time they enter a JD Finish Line store. Our employees are key to our success. The IT Controls and Compliance Analyst, who will report to the Director of Cybersecurity, will be responsible for establishing and improving the IT compliance program based on an established information security framework methodology. This individual will help improve the maturity level of Finish Line security practices, Compliance and Associated Controls. The role will focus on proactive identification and mitigation of IT risks as well as responding to observations identified by third party auditors or assessors. This individual will effectively exhibit JD Finish Line’s core values of Customer, People, Winning, Community, and Financial Responsibility in everything they do by performing the following key duties: Responsible for the development and maintenance of programs to oversee sustainable compliance with ISO 27001/27002, PCI and HIPAA requirements across all Business Units. Co-Lead efforts (in conjunction with internal audit team) to implement and monitor compliance with SOX control objectives across IT, analyze current controls and suggest improvement of identified process inefficiencies. Responsible to translate complex regulations into clear, easily understood regulatory requirements and desired outcomes. Track regulatory compliance and maintain up-to-date records of regulatory requirements and corresponding mitigating controls. Ensure that Information Security policies comply with regulations; ensure policies are updated when needed. Accountable for ensuring compliance to organizational IT policies, with responsibility falling to Director of Cybersecurity Manage the resolution and facilitation of areas concerning residual risk, vulnerabilities and other security exposures, including misuse of information assets and noncompliance. Responsible for monitoring, managing, and closing existing audit issues, and ensuring that internal systems are compliant with security standards. Work with IT & Internal Audit teams to ensure controls are effective and appropriately address the relevant regulatory requirements they address. Participates in compliance reviews as requested by internal or external auditors. Assist in enhancing our Enterprise Risk Management process by developing risk reports, dashboards, and presenting to senior leadership our current IT risk posture. Stays current with new threats, trends and frameworks and recommends proactive and remedial actions. Required Education and/or Experience Bachelor’s degree (B.A.) in Computer Science, business, or IT related field from a four-year college or university as well as 2-3 years of related experience is required or a combination of education and experience. Certified Information Systems Auditor (CISA) designation or other relevant IT controls based certification desired (or willingness to obtain within 12 months). Experience with information security-related standards such as ISO2700x, NIST, COBIT, and PCI-DSS version 3.0-4.0. Experience designing, implementing, testing the design and operational effectiveness of IT General Controls for Sarbanes Oxley (SoX). Broad knowledge of information security best practices, IT controls implementation, software development lifecycle, and awareness of new approaches and techniques in information security technology. Project management experience is a must. Required Computer and/or Technical Skills Should have basic to intermediate knowledge and abilities with Microsoft Word, Excel, and PowerPoint or. Google Suite of Products; General IT/Infrastructure Knowledge Qualifications To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform these functions. Physical Demands The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Sit for more than 6 hours per shift Use hands to finger, handle and feel Reach with hands and arms Talk and/or hear Stand for up to 4 hours at a time periodically Walk or move from one location to another Occasionally may need to climb, balance, stoop, kneel, or crouch Lift and/or move up to 10 pounds regularly and up to 50 pounds occasionally Punctuality and regular attendance consistent with the company’s policies are required for the position, Average work week is 40-45 hours, which can vary depending on business need. The work environment for this position is a moderately noisy office setting. The company reserves the right to modify this job description with or without notice. Employees may be asked to perform additional duties outside of normal job scope on a temporary basis per the company policy. Physical Demands – The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. The company reserves the right to modify this job description with or without notice. Employees may be asked to perform additional duties outside of normal job scope on a temporary basis per company policy. EEOC Statement: The Finish Line, Inc. is an Equal Opportunity Employer and is committed to complying with all federal, state, and local EEO laws. The Finish Line, Inc. prohibits discrimination against employees and applicants for employment based on the individual's race or color, religion or creed, national origin, alienage or citizenship status, marital status, sex, pregnancy status, age, military status, disability, or any other protected characteristic or class protected by law. The Finish Line, Inc. provides reasonable accommodation for disabilities in accordance with applicable laws. Need accessibility assistance to apply? Applicants who require accessibility assistance to submit an employment application can either call Finish Line at (317) 613-6890 or email us at talentacquisition@finishline.com. A member of our Talent Acquisition team will respond as soon as reasonably possible. (This email address and phone number is only for individuals seeking accommodation when applying for a job.)