Job Description

Position Overview Ralph Lauren Corporation (NYSE:RL) is a global leader in the design, marketing and distribution of premium lifestyle products in four categories: apparel, home, accessories and fragrances. For 50 years, Ralph Lauren\'s reputation and distinctive image have been consistently developed across an expanding number of products, brands and international markets. The Company\'s brand names, which include Ralph Lauren Purple Label, Ralph Lauren Collection, Double RL, Polo Ralph Lauren, Polo Ralph Lauren Children\'s, Ralph Lauren Home, Lauren Ralph Lauren, RLX, American Living, Chaps and Club Monaco, constitute one of the world\'s most widely recognized families of consumer brands. Ralph Lauren\'s - India Global Development Center (GDC) is focused on building high-quality technology solutions to enhance the business & customer experience across channels and geographies. The IT Risk & Compliance Analyst role is responsible for providing day to day support on various IT risk and compliance tasks such as execution of key security controls documentation, and ongoing review of security policies maintenance of IT risk register and ongoing support on security incident management. This position must consider and understand Business processing needs, internal and external customer requirements as well as compliance requirements such as PCI and SOX. This position must work in conjunction and enhance the CISO\'s overall organizational security goals. This role will report into the Head of Risk and Compliance position. Essential Duties & Responsibilities Execution of key security controls Responsible for performing various weekly/monthly/quarterly security controls (e.g., termination monitoring, application access cleanups, user access reviews, role to permission reviews, etc.) Controls must be executed with precision and completed timely. Issues noted while executing controls must be raised to management\'s attention. Policy Documentation and Review Support the consolidation of a central repository for documentations as required. Assist in documenting the annual review process, including the formal acceptance process. Facilitate periodic reviews and updates to the policies, with particular attention to areas such as technology use, based on the current environment requirements. Risk Register Review Assist in maintaining and updating the IT risk register. Support in ensuring all relevant risks are appropriately captured, documented, and regularly reviewed in the risk register. Incident Management support Assist in ensuring the accurate and up-to-date documentation of security incidents within the designated platforms. Experience, Skills & Knowledge 2+ years of work experience in the risk and compliance space General understanding of IT General controls and security principles / frameworks (PCI, NIST, ISO 27001, SSAE16, SSAE18). Excellent written and verbal communication skills and is able to work with all levels of management. Very strong analytical and problem-solving skills. Ability to effectively multi-task, prioritize and adapt in a fast-paced, dynamic business environment. Collaboration, communication, and presentation skills Prior ITGC SOX compliance experience is a plus. A plus if candidate has: Industry certifications in security and/or privacy, e.g., CISA, CISM, CISSP, IAPP, CEH Bachelor\'s Degree preferred. Experience working in a global retail company.

foundit