Superior Group of Companies™, formerly Superior Uniform Group, established in 1920, is a combination of companies that help customers unlock the power of their brands by creating extraordinary brand experiences for employees and customers. It provides customized support for each of its divisions through its shared services model.
Fashion Seal Healthcare®, HPI™ and CID Resources are signature uniform brands of Superior Group of Companies. Each is one of America’s leading providers of uniforms and image apparel in the markets it serves. They specialize in innovative uniform program design, global manufacturing, and state-of-the-art distribution. Every workday, more than 6 million Americans go to work wearing a uniform from Superior Group of Companies.
The Information Security & Data Privacy Compliance Specialist manages incoming cybersecurity and privacy due diligence questionnaires from prospects or customers and ensuring timely, accurate responses. This role has a crucial responsibility for establishing trust in SGC services and assisting SGC’s IT, security, sales, marketing, and other teams with a comprehensive knowledge of information security controls and assorted frameworks.
The ideal candidate will have a well-rounded information security background including an understanding of IT risk management, IT governance, information security controls, industry standards and best practices.
ROLE AND RESPONSIBILITIES
Functions as the main point of contact for compliance across all business segments
Maintains the SGC GRC portal not limited to: adding new processes and new controls, new tasks, scheduling, mapping controls, auditing and reviewing evidence for compliance requirements
Manages and provides accurate and well written responses to customer requests for information regarding the technical aspects of SGC’s services and the system of controls protecting the confidentiality, integrity and/or availability of SGC services
Oversees risk management program including vendor risk assessments and management
Partners with Legal where required for customer-facing and/or internal information security and privacy documentation around data security, privacy, and data flow diagrams
Continuously maintains knowledge on the latest privacy laws & regulations and how they apply to SGC, its vendors, and its customers
Assists the Information Security & Privacy Management Committee, Internal Audit, Privacy and vendors with internal and external audit needs
Participates in user awareness training administration, business continuity and disaster recovery exercises
Assists in security technology evaluation, deployment/management, and information security program strategic planning activities
Supports SGC’s adherence to evolving information security controls, regulators and industry best practices
Researched and understands emerging IT risk factors and their impact on current control testing standards and/or documentation
Interfaces with SGC Development, Implementation, and support teams to drive Privacy and Security by Design
Creates, reviews, and maintains policies, standards, and procedures for SGC’s ISPMS as needed
Actively participates in the SGC Information Security & Privacy Management system Committee and committee meetings.
Collaborates with SGC Security staff and vendors to ensure the timely remediation of issues resulting from vulnerability scans, application scans, or penetration tests
Reviews solution changes for impacts and changes to Security, Privacy and Architecture documentation and responses
Bachelor’s degree in information security or equivalent work experience
Minimum of 5 years of information security or privacy program management
Outstanding written and verbal communication skills
Experience working in GRC platforms
Experience with various compliance frameworks and requirements including SOC 2, PCI, NIST, ISO 27001, ISO 27701, CCPA and/or other Data Privacy requirements
Proven ability to effectively handle and prioritize multiple and complex projects simultaneously in a quickly changing environment
Ability to work well in cross-functional teams, including software engineers, marketing, account management, sales operations
Experience with the responsibilities of cloud software-as-a-service providers, as well as knowledge of general security controls, regulatory, legal, and contractual requirements
Compliance – Working to ensure that they, team members, other employees, contractors, strategic partners, and other relevant stakeholders act in accordance with all pertinent rules, regulations, policies, and best practices, and that behavior in the organization meets the company’s standards of conduct.
Information Seeking – They are driven by an underlying curiosity and desire to know more about things, people, or issues. This involves going beyond routine questions and includes digging or pressing for exact information; resolving discrepancies by asking a series of questions; or conducting less-focused environmental scanning for opportunities or miscellaneous information that may be used in the future.
Composure and Resiliency – Dealing effectively with pressure, maintain focus and intensity, and remain optimistic and persistent, even under adversity. This competency includes the ability and propensity to recover quickly from setbacks, rejections, and conflicts and to maintain self-control in the face of hostility or provocation.
Communicating – They provide the information required by others in a concise, direct, and unambiguous way. They perceive how the message affects the receiver and strive to ensure that the receiver clearly understands the specifics and function of the message.
Analytical Thinking – They grasp the underlying concepts in complex information, are able to identify root causes of problems, and formulate solutions based on a synthesis of information.
Deliberative Decision Making – They tend to gather, consider, and evaluate all relevant information to make logical conclusions before moving to action.
Negotiating – Identifying key bargaining points for all parties and work effectively toward win-win solutions.
Accountability – They take responsibility for their own performance and accept full ownership of issues, problems, and opportunities, regardless of the source.
**Along with a generous Compensation Package, the company offers an excellent Benefits Package, including Medical, Dental, a Defined Contribution Plan (e.g. 401(k)), Life Insurance, Long Term Disability, a Flexible Spending Account and Paid Maternity/Paternity Leave.
EOE AA M/F/Vet/Disability
Qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, national origin, age, disability, sexual orientation, veteran status, genetic information, or other status protected by applicable federal, state, or local law.Apply Now
It’s rewarding working at a place that gives back in so many ways. Superior Uniform is part of the Adopt-A-Shore program and has been hosting on-site blood drives since 1987! Participating in these activities really makes me feel like part of a great team.
I’ve been a part of the Superior family for six years… and appreciate all of the extras offered. Like an on-site Yoga class, a walking program and monthly wellness and nutrition seminars. It feels good knowing I’m important to the company as a person.
The average employee tenure at Superior Group of Companies is 15 years and I’ve personally been part of the Superior Group of Companies family for 14 years. I am delighted to work for a company that provides such great job stability for their employees.
I’m proud to be part of such a wildly diverse team of talent. No matter how different our backgrounds and skill sets might be, each of us is appreciated for our contribution to our common goals. To me, that is truly the meaning of teamwork.
Superior is a publicly traded company who does business nationally… but here I’m not just a number. The opportunity for career enrichment is unlimited and my ideas are taken seriously.
Fashion Seal Healthcare provides cutting edge uniform programs and image apparel for our customers. It makes me proud to be part of a company that continually strives for apparel innovation, and is recognized for it within the textile industry.