Don't worry, we can still help! Below, please find related information to help you with your job search.
Technical Debt/Internal Auditor - Cisa
Company | Zeektek |
Address | United States |
Employment type | CONTRACTOR |
Salary | |
Category | IT Services and IT Consulting |
Expires | 2023-08-19 |
Posted at | 10 months ago |
Description:
General Summary
The Technical Debt Auditor is responsible for leading, developing and completing integrated internal audits in compliance with departmental and professional standards. Acts as the principal technical leader for auditing complex information security technologies, assessing security frameworks, security and privacy architecture designs, regulatory and business risk management, security and privacy incident management, application and system change control vulnerability management.
Essential Functions
Develops IT, cybersecurity and privacy audit programs and special consulting projects, leads audit testing and CAP reviews, and delivers audit reports to audit management
Lead and/or participate in complex information technology audits of IT areas to assess the adequacy of internal controls and compliance with Company and departmental goals, objectives and standards
Perform and document audit activities utilizing a comprehensive audit approach (policies, procedures, processes, controls and measures) to address financial, compliance, IT and operational risks in accordance with professional standards
Researches and interprets governmental laws, regulations, and compliance requirements for review
Job Specifications
Typically has the following skills or abilities:
Bachelor's degree in management information system or computer science or engineering, or related field or equivalent experience.
8+ years of hands-on technical information security/privacy experience.
One existing certification (or equivalent) from each of the following categories, which must be currently maintained and valid.
General Audit Certification: Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified Fraud Examiner (CFE)
IT Audit Certification: Information Technology Infrastructure Library (ITIL), Certified Information Systems Auditor (CISA), Certified in Risk and Information System Control (CRISC), Certified in Risk Management Assurance (CRMA), Certified in Governance of Enterprise IT (CGEIT), Cisco Certified Network Associate/Professional (CCNA, CCNP)
IT Security/Privacy Certification: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Quality Security Assessor (QSA), Payment Card Industry Professional (PCIP), Certified Ethical Hacker (CEH), Microsoft Certified Professional/Security Engineer (MCP, MCSE)
Expert level knowledge of security principles and technologies with
5+ years hands-on experience in information technology systems and security assessments or security by design testing
Big 4 or equivalent regulatory compliance consulting experience applying broad risk and threat assessment methodology experience across information technology, security, privacy and business
Demonstrated leadership skills in identifying and analyzing regulatory, security and privacy vulnerabilities in the following:
Finance regulatory compliance testing such as NAIC/MAR, SOX, EHNCA, ICFR or equivalent.
Information technology compliance testing such as ISO27001/2013, COSO, AICPA/SOC(I,II,III) or equivalent.
Information security compliance testing such as CMS ARS, CIS, CSA or equivalent.
Information privacy compliance testing such as HIPAA (45 CFR), GDPR, CCPA, NYCRR or equivalent.
GRC frameworks such as NIST (800-36), ISO (27k series), COBIT, ITIL, GAAS or equivalent.
Compliance crosswalk methodologies and models such as SCF, CCF, UCF, RMF, HITRUST or equivalent.
Proven leadership with multiple cross-functional teams in a deadline-driven environment
Excellent written reporting and presentation skills
Ability to travel approximately 25% of the time
Clean credit history as reported by credit report
Working Conditions
The working environment is generally favorable. Lighting and temperature are adequate, and there are no hazardous or unpleasant conditions caused by noise, dust etc.
The above information in this description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.
Zeektek offers medical, dental and vision coverages to its employees and their dependents. Employees may enroll in our company 401k plan with matching company contributions. Employees will accrue and may use sick time in accordance with guidelines set by the state in which the employee works. Zeektek is an equal opportunity employer. Please see our website, www.zeektek.com, for our complete statement.
Employment decisions at Zeektek will be based on merit, qualifications, and abilities in order to provide equal employment and advancement opportunities to all individuals,. Zeektek does not discriminate in employment opportunities or practices based on age, race, creed, color, religion, national origin, ancestry, sex, gender, marital status, parental status, genetic information, sexual orientation, gender identity or expression, citizenship status, disability (mental or physical), medical condition, military or veteran status or any other characteristic protected by law. We are an Equal Opportunity Employer.
-
Systems Analyst - Excel, Xml, Sql, Scripting
By CyberCoders At Salt Lake City, UT, United States 8 months ago
-
(Senior) Finance & Shared Services Manager
By Catholics For Choice At Washington, DC, United States 8 months ago
-
Paralegal - Probate Administration
By CyberCoders At Miami, FL, United States 8 months ago
-
Account Executive - Automotive Software
By ECW Search At United States 8 months ago
-
Construction Project Coordinator Jobs
By CyberCoders At River Falls, WI, United States 8 months ago