About Macy’s Enterprise Information Security Group

The fast paced and growing world of cyber security and its surrounding support functions make this team the corner stone of all system and technology interactions in the company, from ecommerce, stores, payments, network connectivity and protecting our customers and colleagues’ systems and data.

With offices in Atlanta, Cincinnati and New York Macy’s is an attractive place to grow your career. The entrepreneurial thinking and explosive growth of our ecommerce business complements the stability and support of a national brand. Creativity and ingenuity partner with business acumen and tech savvy to build a unique business poised for continued growth. Employees at Macy’s have long-term opportunities and are encouraged to train and learn cross-functionally and move across domains to further their careers, either within their own groups or totally new areas, we want you to grow and learn. At Macy’s we are committed to giving back to the community by partnering with local charitable organizations and internally focused on the needs of our colleagues and their families. We are focused on making life shine brighter for our customers and colleagues with support from our local Employee Resource Groups sponsored by our Diversity & Inclusion team.

About the Compliance Team

The Compliance Team works within the large Information/Cyber Security Organization and provides guidance to teams throughout Macy’s and Technology to review, test and document system controls, policies and procedures. Foster a culture of transparency and cross-functional communication, to promote compliance with internal and external controls and regulations. The compliance team monitors adherence to policies and procedures, and addresses compliance gaps in a way that fits with our culture and business objectives. As a part of this dynamic team, you will be an active participant in shaping the compliance effort at Macy’s.

Overview:

The Senior, Compliance Analyst is responsible for building automated approaches to efficiently test compliance to current controls via scripting and for tracking compliance with both Macy’s Tech and Macy’s Inc. policies and procedures, partnering with various process owners to create and deliver regular compliance reporting, training materials, and building and maintaining close relationships with teams across the enterprise to ensure knowledge-sharing and alignment. Perform other duties as assigned.

Essential Functions:

  • Design and build test automation processes to ensure compliance efficiently and comprehensively using modern scripting languages.

  • Design and execute compliance control tests of areas of business to assess adequacy, operational effectiveness, and adherence to the company’s policies, procedures and standards.

  • Design and build compliance dashboards as a culmination points for the automated compliance testing to reflect real-time compliance status.

  • Work with auditors and technical subject matter experts to coordinate internal and external audit requirements and reduce overlap in audit requests.

  • Conduct IT technical and process compliance assessments based on established frameworks.

  • Inform stakeholders of operational performance by developing and maintaining a compliance calendar and publishing regular reports for management.

  • Identify gaps/opportunities/key risks and work with control owners to develop corrective actions to address gaps.

  • Track confirmed audit findings/issues and work with business partners and stakeholders to develop action plans to address them or implement mitigating controls.

  • Educate stakeholders on governance and compliance concepts across the organization to drive consistency in the understanding and execution of key MTECH processes.

  • Inspire compliance and work closely with corporate counterparts on compliance processes.

  • Create regular compliance reports for process owners and business functions and communicate results with management.

  • Conduct research as assigned and provide recommendations for improving the compliance position of various functional areas.

  • Demonstrate excellent project management skills, inspire teamwork and responsibility, engage cross-functional team members, and use current technology and tools to enhance the effectiveness of deliverables and services.

  • Regular, dependable attendance and punctuality.

Qualifications:

Education/Experience:

  • 2-5 years relevant work experience in either Audit, GRC, Engineering or Development.

  • Degree preferred but not required.

Communication Skills:

Reasoning Ability:

Physical Demands:

  • This position involves extended periods of sitting and the extensive use of computer and the office equipment.

  • May involve stooping, kneeling, or crouching.

  • Involves close vision, color vision, depth perception, and focus adjustment.

Other Skills:

  • Ability to code/script in languages required ex. Python, Powershell, Java, Javascript, C# or .Net.

  • Ability to interface with and collect data from various APIs.

  • Critical thinking capabilities.

  • Strong attention to quality and detail.

  • Must be highly motivated and demonstrate ability to complete assignments effectively.

  • Strong organizational skills.

  • Ability to handle confidential and sensitive information.

Work Hours:

This job description is not all inclusive. In addition, Macy’s, Inc. reserves the right to amend this job description at any time. Macy’s, Inc. is an Equal Opportunity Employer, committed to a diverse and inclusive work environment.