RochesterRecruiter Since 2001
the smart solution for Rochester jobs

IT Compliance Analyst

Company: Monro Muffler Brake & Service
Location: Rochester
Posted on: June 9, 2021

Job Description:

Monro, Inc., headquartered in Rochester, NY. Experience our unmatched success as the largest operator with close to 1300 auto service and tire stores coast to coast. Our market dominance is driven by teammates who exceed guest expectations and provide consistent value. Recognized as an industry leader, we are a publicly held company (NASDAQ: MNRO) with an ongoing multiyear transformational change initiatives, investing nearly $100 million in our stores, technology and our teammates.

The Monro Family of auto service and tire centers feature quality brands, the majority offering complete auto care at significant savings compared to dealers. We operate approximately 1300 stores, 98 franchised locations, 8 wholesale locations, and 3 retread facilities in 32 states. Our footprint extends from New England to the Southeast, the Mid-Atlantic to the Midwest, and now into California and the Western region.

The IT Compliance Analyst is responsible for conducting and coordinating internal and external audits, and risk and vulnerability management activities. This position is also responsible for developing, implementing, and maintaining IT compliance controls, and supports the execution of internal security compliance activities.

Essential Functions:

  • Develop and maintain IT risk assessment; including determining the objectives and scope of internal audit and compliance programs with advisement of IT security leadership
  • Assist IT with maintaining compliance with various regulatory requirements including SOX, PCI, Data Privacy/CCPA
  • Coordinate, schedule and conduct internal IT security audits and partner with internal/external auditors to identify, evaluate and mitigate vulnerabilities of processes, procedures, and operations
  • Monitor, research, analyze, and interpret federal and state regulations to determine applicability and risks to IT operations
  • Update existing information security policies, standards, guidelines and procedures based on industry best practices and regulatory requirements
  • Identify and communicate recommended/required security controls and document and monitor control implementation
  • Track all audit and compliance remediation efforts and escalate issues not properly addressed
  • Monitor and report status of security tasks and open remediation items
  • Assist in the design, development, testing, documentation and implementation of information and cybersecurity solutions, security policies, standards, guidelines and procedures to ensure ongoing maintenance of security
  • Monitor compliance of policies and standards among employees, contractors, partners and other third parties
  • Provide guidance on managing and mitigating IT security risk related to the network infrastructure
  • Assist in ensuring business units comply with information security standards and applicable regulations
  • Perform other duties as assigned

Education and Experience:

Bachelor's degree in Information Security, Computer Science, Management Information Systems, or related field with a minimum of 3 years experience in information security and/or related experience, or an equivalent combination of education and experience.

IT security related certification preferred (e.g., Security +, CISSP, CISA, GSEC, or similar professional certification)

Knowledge and Skills:

  • Knowledge of IT audit and compliance frameworks
  • Understanding of PCI, SOX, Data Privacy regulations, etc.,
  • Familiarity with security controls relating to antivirus/antimalware, firewalls, network access control systems, or other similar products/technologies
  • Experience and/or knowledge of SIEM systems desired
  • Knowledge of IT and information security best practices
  • Able to handle moderate problem resolution with general supervision
  • Experience in risk assessment, audit, and IT security assessments
  • Experience administering information security programs including risk assessments, forensic research, gathering metrics, and reporting status
  • Basic knowledge of information security principles including Intrusion detection/prevention, vulnerability management, and change management
  • Basic knowledge of ISO/IEC 27000 series, SSAE 16/18 or SAS 70 requirements, and security practices of Intranet and Extranet
  • Must have strong interpersonal, teamwork, self-initiative skills
  • Excellent organizational skills with the ability to manage multiple priorities and projects in a fast-paced environment to meet established deadlines
  • Strong oral and written communication skills, including technical documentation; ability to effectively communicate with technical and non-technical users

Work Environment & Physical Requirements:

This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, scanners and fax machines. Position requires prolonged periods of sitting/standing at a desk and working on a computer.

Ability to work standard business hours with the flexibility to work evenings, weekends and holidays as needed.

Occasional travel required.

All your info


  • Health Insurance
  • Dental Insurance
  • 401K Retirement Plan with Company Match
  • Paid vacation
  • Paid Holidays
  • Employee Discounts
  • Career Development

Your next Destination!

Growth Opportunity: At Monro we're committed to helping our teammates grow their career through the combination of coursework, demonstrating skills and open opportunities. You will receive on-the-job training, company sponsored certifications, as well as course curriculum in Monro University that empowers you to advance to the next level of Automotive Professional.

Monro, Inc. is an equal opportunity employer and affords equal opportunity to all applicants for all positions without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Keywords: Monro Muffler Brake & Service, Rochester , IT Compliance Analyst, Other , Rochester, New York

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Log In or Create An Account

Get the latest New York jobs by following @recnetNY on Twitter!

Rochester RSS job feeds