Job Title:
Avoid Information Risks
-----------------------------------
Job Description
We seek a professional to oversee internal and external audits, managing risk assessments and evaluating security measures. This individual will play a crucial role in maintaining our organization's integrity.
The ideal candidate has experience with information security frameworks, industry standards like NIST 800-53, ISO 27001, and COSO. Strong analytical thinking and business judgment are essential for this position.
This role requires a Bachelor's degree in Computer Science, Engineering, or a related field, or equivalent work experience. Relevant certifications such as CISA, CRISC, CISM, or CISSP are desirable.
Key Responsibilities:
* Develop audit programs and plans, determine the scope of audit coverage, and manage internal and external audit engagements
* Oversee the audit process, make recommendations on policies, and ensure compliance obligations are met
* Coordinate and/or perform audit work, review reports and management responses, and review workpapers for proper support
* Identify factors causing deficient conditions and provide constructive, practical recommendations for audit findings
* Support iterative review of assessment results and follow up on the implementation of corrective actions
Requirements
The following qualifications are necessary for success in this role:
* Experience with information security frameworks and industry standards
* Strong business judgment and analytical thinking
* Bachelor's degree in Computer Science, Engineering, or a related field, or equivalent work experience
PREFERRED QUALIFICATIONS:
* CISA, CRISC, CISM, or CISSP certifications