Did you know?
Costco Wholesale is a multi-billion dollar global retailer with warehouse club operations in eight countries. We are the recognized leader in our field, dedicated to quality in every area of our business and respected for our outstanding business ethics. Despite our large size and explosive international expansion, we continue to provide a family atmosphere in which our employees thrive and succeed.
Description of position
The I.S. Compliance & Risk Analyst is responsible for the analysis, communication, implementation and risk mitigation of Costco internal I.S. controls for domestic and international mandates and regulatory requirements. This role works with other business and legal departments to define and set corporate guidance in response to emerging standards and legislations.
This includes 1) creation and communication of policies, procedures and testing to maintain adherence to applicable standards and regulations; 2) providing direction and guidance for the resolution of identified weaknesses or deficiencies; 3) engaging in compliance activities and establishing/meeting deadlines to ensure adherence to rules and regulations can always be substantiated; and 4) coordinating these efforts across regional and international Costco operations.
This individual will be required to ‘do what it takes’ to anticipate regulatory impacts, promote company awareness,
meet compliance deadlines, propose solutions to deficiencies, and communicate effectively at all levels.
Tasks and responsibilities
Maintain a strong understanding of current and upcoming regulatory requirements and legislation.
Assist in establishing and following methodologies for general system and business controls, and identify/prioritize risks.
Develop and execute plans to communicate and remediate all known material weaknesses or significant deficiencies, and minimize any deficiencies noted by either internal or external auditors.
Drive activities to achieve organizational goals – Report of Compliance, deficiency resolution, etc.
Direct and execute periodic reviews and testing required for regulatory compliance.
Ensure successful follow-through and completion of compliance & mitigation activities by all areas.
Drive assigned tasks leveraging I.S. expertise or outside resources where needed.
Communicate and make presentations/recommendations, as required, to management and other personnel.
Required skills, abilities, and certifications
5+ years experience in computer security, technology regulatory compliance, risk/project management or related field.
Professional accreditation in I.S. audit, security, privacy or other related disciplines (CISA, CISSP, CIPP, CIA, etc).
Previous experience with GRC tool implementation and operation, or Managing PCI Compliance.
Previous experience with identification and management of technology risks.
Strong work ethic, strong learning skills and ability to drive projects to completion.
Strong understanding or ability to rapidly learn the business & associated compliance and risk mitigation standards.
Recommended skills, abilities, and certifications
Highly motivated and detail oriented with the ability to work independently, under pressure and in crisis situations.
Excellent written and oral communications skills, as well as strong interpersonal and communication skills.
Ability to interpret data and processes to identify potential compliance issues, risks and vulnerabilities.
Ability to propose creative solutions to successfully remediate identified compliance issues.
Ability to quickly understand security systems in order to identify and validate security requirements.
To Apply: Email your current resume to IT_JOBS@costco.com . If hired, you will be required to provide proof of authorization to work in the United States.
Costco Wholesale is a multi-billion dollar global retailer with warehouse club operations in eight countries. We are the recognized leader...