Hi Partner,
I hope you are having a great day. We are assisting our client with their 'IT Compliance Auditor' Contract job in San Francisco, CA.
You can submit candidate matching the job description using Quick Apply link above.
To unsubscribe, click here.
Note - Please do NOT submit resumes in the email as they may not get evaluated.
Job Description:
Key responsibilities:
• Maintain documentation of IT and information security controls as part of on-going compliance efforts (SOX, SSAE-16 SOC, etc.):
• Work directly with Internal Audit and control owners to obtain evidence for our SOX and SOC compliance activities – walkthroughs, testing, documentation of findings, follow-up, etc.
• Assist to perform readiness assessment for SOC 2 (SSAE-16) report – assisting to determine whether controls are in place and operating effectively by collecting and reviewing evidence
• Track operational functions for compliance audits – quarterly certification, access reviews, control description and owner confirmations, etc.
• Ensure compliance with all applicable configuration standards and ensure all compliance requirements are met.
• Recommend security controls and/or corrective actions for mitigating technical and business risk
Candidates will be evaluated based on their ability to perform the duties listed above while demonstrating the skills and competencies necessary to be highly-effective in the role. These skills and competencies include:
• Knowledge of and experience with: Sarbanes-Oxley (SOX), Governance, Risk, and Control (GRC) frameworks, approaches, tools, methodologies (i.e., NIST, COBIT, ISO, etc.), SSAE 16 SOC 1 and 2 attestations
• Knowledge of IT controls across multiple technologies – operating system, database, applications (ERP, SaaS, etc.) – and processes:
o Access Management; Segregation of Duties (SOD)
o Change Management; Configuration Management; Patch Management
o Operations and Support; Disaster Recovery
• Knowledge of IT risk and control management and internal audit practices
• Experience developing and maintaining IT control documentation – control matrices, narratives, process flows, etc.
• Experience measuring compliance with IT policies / standards / guidelines across a variety of IT-related subject matters
• Ability to manage multiple priorities – projects, deliverables, and stakeholders
• Certified Information Systems Auditor (CISA) or equivalent professional certification (e.g., CPA) is a plus
• Excellent interpersonal skills, presentation skills, and verbal / written communication skills
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business
• An understanding of organizational mission, values, and goals and consistent application of this knowledge
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
Candidates will be evaluated primarily upon their ability to demonstrate the competencies required to be successful in the role, as described above. For reference, the typical work experience and educational background of candidates in this role are as follows:
• BS in Computer Science, Information Security, Accounting or a related field
• 1-2 years of experience in IT audit, Controls Assurance, Security Assurance, or equivalent work experience.
Regards,
Eric Victor
Net Matrix Solutions, Inc.
281-598-2600 x 306
This is a marketing message from Net Matrix Solutions, Inc., 10235 West Little York Road, Houston, Texas. You are receiving this email because you opted to receive new job openings.To manage your preferences or if you do not want to receive such email, click here
No comments:
Post a Comment