Compliance & Audit Administrator

:
**ZS **is a place where passion changes lives. As a management consulting and technology firm focused on transforming global healthcare and beyond, our most valuable asset is our people. Here you’ll work side-by-side with a powerful collective of thinkers and experts shaping solutions from start to finish. At ZS, we believe that making an impact demands a different approach; and that’s why here your ideas elevate actions, and here you’ll have the freedom to define your own path and pursue cutting-edge work. We partner collaboratively with our clients to develop products that create value and deliver company results across critical areas of their business including portfolio strategy, customer insights, research and development, operational and technology transformation, marketing strategy and many more. If you dare to think differently, join us, and find a path where your passion can change lives.

**Our most **valuable asset** is our people**.

At **ZS **we honor the visible and invisible elements of our identities, personal experiences and belief systems—the ones that comprise us as individuals, shape who we are and

make us unique. We believe your personal interests, identities, and desire to learn are part of your success here. Learn more about our diversity, equity, and inclusion efforts and the networks ZS supports to assist our ZSers in cultivating community spaces, obtaining the resources they need to thrive, and sharing the messages they are passionate about.
:
**What you'll do**:

- Perform audits in accordance with the plan based on various control frameworks and standards;
- Establish, monitor, document, and update compliance controls and findings;
- Create remediation plans based on findings and initiate projects, as necessary, in order to meet commitments made within remediation plans;
- Participate in client directed audit and compliance initiatives, including but not limited to, SAS 70 (SSAE 16) audits, client SOX audit assistance requests and Vendor Data Security and Privacy assessments;
- Develop and update IT Policies, process maps, templates and supporting change management tools, as often as needed;
- Assist in the development of training material in support of IT Policy adoption enterprise wide; participate in compliance training workshops, as needed;
- Monitor compliance with existing IT Policies and supporting tools;
- Liaison with ZS Client Teams and the ZS SaaS Hosting Team Manager to ensure that all mutually agreed upon business operations SLAs are met;
- Plan and participate in DR planning and testing;
- Assist with vendor review and selection in support of on-going internal and client directed compliance initiatives;
- Assist the Legal team with the review of client contracts as it relates to technology specific compliance requirements;
- Assist the Legal team with the interpretation of various US and EU laws and technical compliance directives and determine potential impact to the organization.
- Assist with the completion of client RFPs and RFIs as it relates to compliance;
- Work with IT, consulting, SD Group and legal teams on compliance standards;
- Security and compliance projects as assigned.

**What you'll bring**:

- 2 years of information systems experience with audit planning, risk assessment, and reporting/documentation
- Hardware, software, and networking information technologies
- IT security, controls, practices, and procedures
- Disaster Recovery planning and testing
- Working knowledge of various control frameworks like mentioned below are desirable:

- COBIT - Control Objectives for Information and Related Technology
- ISO/IEC 27002:2005 - Code of Practice for Information Security Management
- ITIL - Information Technology Infrastructure Library
- SOX - Sarbanes-Oxley
- HIPAA HITECH - Health Insurance Portability and Accountability
- SAS 70 - Statement of Auditing Standards No. 70
- SSAE 16 - Statement on Standards for Attestation PCI DSS - Payment Card Industry Data Security Standard
- Engagements
- ISAE 3402 - International Standard for Assurance Engagements
- NIST - National Institute of Standards and Technology

:
**Perks & Benefits**:
ZS offers a comprehensive total rewards package including health and well-being, financial planning, annual leave, personal growth and professional development. Our robust skills development programs, multiple career progression options and internal mobility paths and collaborative culture empowers you to thrive as an individual and global team member.

We are committed to giving our employees a flexible and connected way of working. A flexible and connected ZS allows us to combine work from home and on-site presence at clients/ZS offices for the majority of our week. The magic of ZS culture and innovation thrives in both planned and spontaneous face-to-face connections.

**Considering applying?**

ZS is an equal opportunity employer and is committed to providing equal employment and advancement opportunities withou