At Altisource (NASDAQ: ASPS) we build world-class technologies and services for the mortgage and real estate industry and are well poised to help revolutionize how homes are bought, sold, and managed. In the US, we partner with 7 out of the top 10 mortgage servicers, operate one of the top three real estate auction websites, and manage a cooperative which represents a 15%+ market share of the $1.8tn US Originations market. 

Altisource™ is a high-energy, rapidly growing technology and services provider that is changing the way companies conduct business.

Altisource’s Software and Technology segment is responsible for incubating and launching market disruptive solutions that apply our core technologies and intellectual property including business process optimization platforms, advanced decision models, consumer sciences, and business intelligence systems into market-leading software applications and services.

This is an opportunity to become a critical member of one of Altisource’s incubated software technology organizations and to participate in the development and launch of a new product concept. We are looking for top candidates who are passionate about creating great software that delivers significant market value. This is the opportunity to work among some of the industry’s top names working on some of the most challenging technical problems.

Individual contributor role reporting to the Senior Manager, Governance and Controls. Responsible for:

ISO Certification Program

• End-to-end management of the ISO certification programs for Altisource with a collaborative approach towards the various Lines of Business
• Execute ISO internal audits to assess compliance with the ISO 27001 and ISO 22301 standard requirements
• Track and report findings from the ISO audit to various forums like the COC, CMC and TISC
• Maintain and update periodically ISO pertinent documents including but not limited to ISMS Manual, Scope document, Statement of Applicability, Skills matrix, etc

Document Management

• Establish Technology Policy, Procedures and Guidelines within Altisource based on the industry standards
• Ensure all the above documents are reviewed and approved within the timelines
• Carry out the first level of review to ensure the document reflects the true state of implementation
• Carry out the final sanity check of the above-mentioned documents to ensure that there are no cosmetic or linguistic issues
• Represent Altisource in various external audits including but not limited to client, regulatory, and certification audits

Communication, Training and Awareness, Reporting

• Ability to craft content to cater to a wide selection of audience
• Ability to explain technical processes and jargon in a simple, easy-to-digest manner
• Keep up with the industry threat landscape and identify areas for end user awareness
• Ability to gauge the applicability of training to groups based on the activities performed
• Must be aware of US Federal and state privacy and security requirements
• Engage end users with immersive yet effective mailers, Learning Management modules, presentations, etc.
• Assist other technology teams to draft communication templates for their processes
• Responsible for creating/updating decks in a crisp, precise and accurate manner that are presented to leadership
• Create reports on overall governance and compliance activities for various forums

Risk Management

• Manage and maintain the in-house developed Risk Management tool
• Responsible for ensuring risks move through the workflows within the defined SLAs
• Responsible for training end users on the risk management workflow and ensuring all required fields are duly completed with relevant information
• Responsible for reviewing and approving risks related to end-user computing items
• Report out weekly on the status of risks in the tool
• Update the risks in the TISC matrix based on the current state of operations

IT Control Testing

• Perform gap assessments between NIST, documentation and implementation of various security baseline standards for technology/products like Firewalls, O365, AWS, DLP, AV, etc
• Have a zero-trust attitude while testing and report every gap identified
• Track the remediation process and ensure the timely closure of these gaps

Third Party Audits and questionnaires

• Responsible for responding to client and audit questionnaires with accurate information on a need-to-know basis
• Provide evidence of compliance and participate in client audits to represent the Technology Services LOB

Required qualifications and skills -

• Bachelor’s degree or equivalent
• The selected individual should have a minimum of 3 years of risk management and compliance management experience
• Expert understanding of information security best practices such as NIST, ISO 27001, SOC, SOX, SSAE
• Strong IT Governance, Controls, Risk and Compliance experience with knowledge of local and international privacy laws and proficiency with common privacy regulations including GDPR and CCPA
• ISO27001/ISO22301 Lead auditor is mandatory
• Good Knowledge of risk management concepts like risk assessment, risk treatment techniques and methodologies
• Have a zero-tolerance attitude for tardiness
• Meticulously excellent written communication skills and an obsession with attention to detail are a must
• Ability to communicate security and risk-related concepts to both technical and non-technical audiences who do not have a technology or security background
• Experience in working both independently and in a team-oriented, collaborative environment is essential
• Strong critical thinking, management, interpersonal and collaborative skills, multi-tasking and organizational skills
• Self-driven and focused to ensure activities are completed by collaborating with diverse stakeholders on time
• Understanding of various IT processes and software development methodologies
• Advanced Excel, PowerBI and PowerApps experience will be good to have

WORKING AT ALTISOURCE ADVANTAGES

Prosperity

• Competitive salary based on your experience and skills – we believe the top talent deserves the top rupee
• Bonus Potential – if you go above and beyond, you should be rewarded

Good Health

• Comprehensive insurance plans like Medical, Personal Accident Benefit and Life Insurance
• Wellness Programs (examples include eye examination, diabetes checkup camp, hemoglobin check and health talks)

Happiness

• 10 paid holidays, plus 26 paid days off per year
• Lots of employee engagement activities both offsite (examples include family cricket/football games, annual company celebrations and happy hours) and onsite (examples include office stress buster events, holiday parties, and quarterly Living our Values celebrations)
• Opportunities to join our community service initiatives, including Habitat for Humanity

Are you up to the challenge? What are you waiting for? Apply today!