WORK FOR A WINNING TEAM THAT NOW OFFERS BENEFITS FROM DAY ONE, PLUS DAILY PAY*

At Hilton Grand Vacations, you will become a part of a culture that encourages and motivates you toward achieving your goals.

Here’s why you will love it here:

• Recognition Programs and Rewards
• Excellent health care options, including medical, dental, and vision
• A people-first culture
• Go Hilton: Travel Discounts Program Hilton hotel rates worldwide.
• Perks at work: Employee Pricing platform
• Employee Assistance Program that supports your physical and mental well-being.
• Paid Vacation Time and Paid Sick Days
• 401(k) program with company match
• Tuition reimbursement programs
• Numerous learning and advancement opportunities
• And more!

What Will I be Doing?

The Lead IT Compliance Analyst - SOX/PCI is responsible for the Hilton Grand Vacations Technology compliance strategy. This position will lead and drive compliance efforts for Sarbanes-Oxley (SOX) and PCI (Payment Card Industry) by coordinating with internal and external auditors to ensure compliance. This opportunity provides the ability to work with various Technology teams to evaluate, remediate and perform control testing of SOX and PCI controls to improve efficiency and effectiveness. The candidate will assist technology teams in remediating control weaknesses including the monitoring of any remediation plans to address their weaknesses. Participate in System and Organization Controls (SOC 1) Type II Audits, and the evaluation of third-party risk management reviews.

You are responsible for driving company success through performing the following tasks to the highest standards:

• Lead and facilitate the lifecycle of internal and external - (PCI) and Sarbanes-Oxley (SOX) audits; requesting and reviewing vital evidence; remediation efforts, providing accurate and timely response and tracking audit exceptions.
• Interpret and analyze audit evidence, operational data and/or information systems and draw logical conclusions based on evidence submitted and serve as the internal Subject Matter Expert (SME) for compliance assessments.
• Integrate IT GRC requirements into broader technology governance processes (e.g., cybersecurity, operational readiness, SDLC, enterprise architecture, ITIL processes, supply chain security) and ensuring IT GR C and Compliance practices are operating across the organization.
• Design a continuous compliance program to ensure ongoing evaluation and validation of IT Control effectiveness.
• Interpret regulations affecting control standards and suggests methods of updating policies and practices that address any risk concerns to maintain IT and regulatory compliance.
• Work with Internal Audit, Engineering, Legal, Product Management, Security, Network, Infrastructure, etc. on projects and initiatives to help develop a world class IT Compliance function.
• Providing input to the information security awareness, training, and education program to ensure all employees are advised about compliance practices.
• Develop valuable process improvements that can result in greater efficiency of operations by documenting business concerns, risks, root causes, and recommendations.
• Drive timelines and work in a team environment to ensure all outcomes are met in the desired timeframe.
• Participate in implementing and tracking completion of User Access Reviews (UARs).
• Develop repeatable processes to support continuous compliance.
• Work with control owners to provide evidence.
• Identify and analyze gaps in desired outcomes. Analyze results with actionable recommendations and corrective action plans.
• Work on challenging IT Compliance projects that will build core skills.
• Embodies the Hilton Grand Vacations Values of Hospitality, Integrity, Leadership, Teamwork, Ownership, Now,
• Finishes the required Company training/compliance courses as assigned.
• Adheres to Company standards and maintains compliance with all policies and procedures.
• Other related duties as assigned.

What Are We Looking For:

Hilton Grand Vacations is an authority in the vacation ownership industry, operating with an unwavering dedication to innovation, quality, and continued growth. At the core of our company’s success are our Team Members.

To fulfill this role efficiently, you possess the following minimum qualifications and experience:

• Background in leading IT compliance efforts and assessments for medium/large business or background in performing IT compliance assessments.
• Knowledge of the PCI DSS Framework, specifically PCI 4.0 and assisting with gap remediation.
• Fundamental understanding of core Information Technology processes and systems (e.g., cloud technologies, operating systems, data management, networking, systems development lifecycle, etc.)
• Comprehensive understanding of IT infrastructure and management, Audit functions and security controls, Risk management, Network security and Information security policies and procedures.
• Strong analytical skills with experience in data analysis.
• Demonstrable ability to manage multiple projects while maintaining attention to detail and meeting established timeframes.
• Self-motivated and willing to take the initiative.
• Strong problem-solving skills.
• Superb communication skills, both written and verbal.
• Ability to meet established timeframes, keep organized records, and solve issues.
• Great demeanor, curious, and eager to learn and open to coaching to help you grow professionally.
• Bring positive energy, enjoy collaborating with others, learning new perspectives and sharing your own creative ideas.
• Possess strong organization and time management skills.
• Enjoys working in a team environment.
• Solid sense of ‘Service Culture'

In addition, the following qualifications, knowledge, skills, abilities, and experience are preferred:

• Microsoft Office Excel experience required; advanced Excel skills preferred.
• Willingness to challenge the status quo and identify process improvements.
• Creative thinker capable of converting sophisticated issues into valuable solutions.
• Experience in IT Audit or IT Compliance leading or participating in SOX or PCI programs.
• Professional certifications either in CISA, CRISC, CISM, PCIP, ISA; or QSA.

Our dedication to excellence is recognized and celebrated by some outstanding accolades including being named to Newsweek's Most Loved Workplaces list in 2021, a Stevie American Business Awards Gold winner for Company of the Year in Hospitality and Leisure, ranked a top company by LinkedIn in Travel & Hospitality on its 2022 Top Companies Industry Edition list and becoming a Great Place to Work® certified company, earning our 2022 certification.

*Eligibility: All U.S. hourly Team Members not represented by a labor organization or subject to collective bargaining agreement.

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

We will ensure that individuals with disabilities are provided accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.