Security & Compliance

Security & Compliance

 Downer's Grove, IL

  Contract - $50-$70/hr

Overview

We are seeking a Security & Compliance Contractor to support ongoing governance, risk, and compliance (GRC) initiatives within a growing enterprise environment. This role will play a key part in access management, audit support, and compliance activities, with a strong focus on SOX, PCI, and identity/access governance.

This is a hands-on, operational role ideal for someone with a solid foundation in cybersecurity principles who is comfortable working in a structured, audit-driven environment.

Key Responsibilities

• Support quarterly access reviews, including validation and remediation of user access
• Perform daily termination report reviews and ensure timely deprovisioning of user access
• Assist in managing and improving user provisioning and deprovisioning processes
• Serve as a primary point of contact for access requests and privilege management (as processes evolve)
• Support initiatives to reduce excessive or inappropriate access privileges

• Assist with SOX compliance activities, including evidence collection and audit support
• Support PCI audit preparation and execution, including documentation and artifact submission
• Help maintain ongoing PCI compliance posture, not just during audit cycles
• Ensure proper documentation and mapping of controls to support audit readiness

• Maintain and update IT security policies and procedures as changes occur
• Partner with internal stakeholders (including legal) to review and approve policy updates
• Support governance activities related to access controls, compliance frameworks, and risk management
• Assist in developing and refining processes to improve security and compliance maturity

• Contribute to the development of enhanced access control processes, including centralizing access requests and privilege management
• Identify opportunities to improve manual processes and operational efficiency
• Support ongoing efforts to strengthen identity and access management (IAM) practices

Required Qualifications

• Experience supporting security, compliance, or IAM-related functions in an enterprise environment
• Foundational understanding of cybersecurity principles, including:
  • Threat awareness
  • Risk management
  • Security best practices
• Experience with or exposure to audit and compliance frameworks (e.g., SOX, PCI)
• Familiarity with identity and access management concepts, including provisioning and access reviews
• Strong attention to detail, particularly in documentation, reporting, and audit support
• Ability to work in a process-driven, compliance-focused environment
• Strong communication skills and ability to collaborate with cross-functional teams

Preferred Qualifications

• Experience with SOX and/or PCI audits, including evidence collection and artifact management
• Exposure to user provisioning tools or IAM platforms
• Familiarity with enterprise systems such as Oracle or Workday (nice to have, not required)

MMD Services Inc. is an equal opportunity employer. All applicants are considered for all positions without regard to race, religion, color, sex, gender, sexual orientation, pregnancy, age, national origin, ancestry, physical/mental disability, medical condition, military/veteran status, genetic information, marital status, ethnicity, alienage or any other protected classification, in accordance with applicable federal, state, and local laws.