Garmin IT Policy Analyst 3 in Olathe, Kansas
The Policy Analyst is responsible for overseeing the development, administration, and maintenance of Garmin’s Global Information Technology, Security, and Compliance policy framework.
Develops and provides oversight for a policy governance framework aligned to both global and regional regulatory, compliance and customer requirements
Facilitates the policy program lifecycle, including policy development, rollout, review, enhancement, and publication
Collaborates with IT Compliance, Cyber Security, and other stakeholders to identify impacts to and gaps in policies associated with regulatory and contractual obligations
Coordinates drafting of policy and procedure documents aligned with regulatory, security, and compliance programs, utilizing experience with standards and best practices
Facilitates communication and socialization of policy content from ideation through deployment and dissemination
Conducts and/or supports both global and regional policy training and awareness initiatives
Responds to ad hoc or routine policy development requests.
Uses considerable discretion and judgment, performing duties in a self-directed manner with minimal supervision, and prioritizing multiple objectives in a rapidly changing environment
Demonstrates responsibility for ongoing personal development, professional growth and continuing education
Completes other duties assigned based on future business needs
EDUCATION EXPERIENCE AND SKILLS REQUIRED:
Bachelor of Science in Information Technology, Management Information Systems, Business or related field OR combination of years of experience
Must possess a minimum of 5 years of technology compliance, risk management, regulatory, or legal experience.
Experience writing policies, standards and guidance documents.
Experience with policy governance at a complex institution.
Experience with change management, including communicating new programs or initiatives to senior leadership.
Team oriented, with exceptional organizational, project management, written and verbal communication skills.
Experience benchmarking organizational compliance against security standards such as NIST 800-53, ISO 27001/27002, and other industry standard Cyber Security practices.
Self-driven, with a proactive and solution-oriented working style.
Experience benchmarking organizational compliance against regulatory frameworks such as the General Data Protection Regulation (GDPR), Payment Card Industry Data Security Standard (PCI-DSS), and Health Insurance Portability and Accountability Act (HIPAA).
Garmin International is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, veteran’s status, age or disability.