IT Security and Compliance Specialist

Job Summary

The Security and Compliance Specialist is responsible for ensuring HellermannTyton’s information security posture meets regulatory, industry, and internal standards. This role combines technical expertise, compliance knowledge, and strong collaboration skills to protect critical assets, maintain certifications, and enable business continuity. The position requires coordination of disaster recovery and business continuity efforts across IT and business units, proactive identification of cybersecurity deficiencies, and implementation of advanced security measures including Data Loss Prevention (DLP) and AI security controls. Additionally, the role will involve regular SOX control performance, ITGC audits, and preparation for TISAX, ISO 27001, and DFARS compliance frameworks. This will be achieved while maintaining HellermannTyton's Quality and EHS certifications by supporting all corporate policies, procedures, work instructions, and required documentation.

Essential Functions

• Analyze technical controls to ensure cybersecurity and compliance requirements are met across enterprise systems.
• Verify documented processes, procedures, and standards to validate secure configurations.
• Track compliance across multiple frameworks (TISAX, SOX, DFARS, NIST, ISO 27001) and maintain records of requirements and mitigating controls.
• Perform independent ITGC audits and monitor compliance with SOX/ITGC frameworks.
• Oversee development, documentation, and maintenance of cybersecurity controls and frameworks.
• Conduct SoD checks and analyses when assigning authorizations; administer SoD matrix.
• Prepare and implement TISAX and ISMS audits, supporting sister companies as needed.
• Develop and maintain information security guidelines and policies.
• Perform internal risk assessments and vendor risk evaluations.
• Collaborate on IT projects to ensure risk issues and cybersecurity policies are addressed throughout the project lifecycle.
• Provide support for Disaster Recovery (DR) and Business Continuity (BC) planning and testing, working closely with business units to ensure resilience.
• Develop and deliver cybersecurity and privacy awareness training programs.
• Execute information security projects and initiatives to protect organizational and customer data.
• Implement and manage Data Loss Prevention (DLP) solutions to safeguard sensitive information.
• Integrate AI security measures to monitor and mitigate risks associated with AI-driven tools and processes.
• Identify cybersecurity deficiencies, investigate root causes, and collaborate on corrective actions.
• Stay current with emerging threats, compliance requirements, and industry best practices through continuous education.
• Perform job duties in full compliance with internal controls, policies, and regulations.
  
  

Other Functions

• Maintain housekeeping and 5s standards for assigned area
• Other duties as assigned.
  
  

Success in this role will require

• Analytical and critical thinking skills.
• Ability to manage multiple projects in a fast-paced environment.
• Strong organizational skills and attention to detail.
• Ability to maintain discretion and composure under pressure.
  
  

What You'll Bring

• Bachelor’s degree in information security, Computer Science, or related field (or equivalent experience).
• 3–5 years of progressively responsible experience in IT security and compliance roles.
• Hands-on experience with firewalls and management.
• Familiarity with compliance frameworks such as TISAX, ISO 27001, NIST 800-53, and CIS standards.
• Experience interpreting certification requirements and implementing controls.
• Knowledge of risk analysis, vulnerability management, and incident response.
• Experience with Data Loss Prevention (DLP) technologies and strategies.
• Understanding of AI security principles, including risk mitigation for AI-driven systems.
• Familiarity with cloud technologies (IaaS, PaaS, SaaS).
• Strong written and verbal communication skills; ability to present to technical and non-technical audiences.
• Professional certifications preferred: CISSP, CISM, CISA, ISO 27001 Lead Auditor, TISAX experience.
  
  

By applying for a position with HellermannTyton, you understand that should you be made an offer, it will be contingent on your undergoing and successfully completing a background check through the use of our 3rd party supplier. Background checks may include some or all of the following based on the nature of the position: SSN/SIN validation, education verification, employment verification, criminal check, driving history, and drug test. You will be notified during the hiring process of which checks are required by the position.

HellermannTyton Corporation is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.