Responsibilities Include:
• Understanding of ISO 27001, ISO 22301, SOC-I and SOC-II certifications/ attestations, Legal obligations and related controls in the areas of Physical Security and Environmental Security, as applicable to the facilities in the IT industry. • Play a pivotal role between the GWS Operations Team and the Business SPOCs to strengthen the applicable controls, as applicable for GWS Facilities operations’ team. • Create Management Systems as needed to meet compliance obligations. • Track and document all controls impacting GWS operations. • Help/ Guide the GWS Operations Team in conducting Risk Assessments and creating Risk Register for each site, as required. • Track and document any Audit or GAP Assessment and GWS evaluations and risk mitigation plans. • Collaborate across GWS and our business partners to fully operationalize compliances within the GEO teams as outlined by GWS and Risk and Compliance. • Develop clear, high-quality, well-documented processes and SOPs that exceed industry benchmarks and meet or exceed controls’ requirements. • Assess for continuous improvement and ensure effectiveness of processes and SOPs for proactive risk management. • Train GEO personnel on compliance controls, processes and SOPs pertaining to their portfolio • Act as a trusted advisor and compliance subject matter expert for the organization. • Partner with cross organizational stakeholders including but not limited to Risk & Compliance, Internal Audit, InfoSec, Procurement, Finance, HR and Legal in support of compliance activities and issue escalation/remediation. • Help the GWS Operations Team in various internal and external audits on ‘As & When’ basis. • Create Scope of Work and conduct RFPs to obtain qualified vendors to support compliance in the regions, as approved by the GWS Head.