As a seasoned professional in the field of information security and risk management, you will be responsible for leading internal and external audits, as well as driving compliance initiatives. The ideal candidate will have strong knowledge of regulatory requirements and proficiency in GRC tools.
Key Responsibilities:
* Plan, scope, and manage internal and external information security audits
* Oversee audit processes, review findings, and develop practical recommendations
* Support compliance with various frameworks and standards, including ISO 27001, SOC 2, NIST, and GDPR
* Conduct control testing and risk assessments across critical systems and processes
* Partner with control owners to drive remediation, evidence collection, and compliance-by-design
The successful candidate will have a strong background in IT audit, information security, and risk management, as well as relevant certifications such as CISA, CISM, CRISC, or CISSP. A degree in Computer Science, Engineering, or a related field is required.
Required Skills and Qualifications:
* Strong knowledge of IT audit, information security, and risk management principles
* Experience with regulatory requirements and compliance initiatives
* Proficiency in GRC tools and control testing methodologies
* Relevant certifications such as CISA, CISM, CRISC, or CISSP
* Strong communication and interpersonal skills
We offer a competitive compensation package and opportunities for professional growth and development. If you are a motivated and experienced professional looking for a challenging role, please submit your application.