Location: Troy, MI / Commack, NY

Job Requirements:

• Bachelor's Degree in a related field is strongly desired.
• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager, (CISM), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC) preferred.
• 6 years of experience working in technology audit, Information Security, or Information Technology required.
• 2 years of SOX IT control execution or testing or IT auditing experience or IT risk.
• Three years of Information Security or IT experience.
• Demonstrated experience in Risk and Control Self Assessments, Audits, or exams for technology or information security.
• Demonstrated ability to audit general IT controls including related infrastructure (Active Directory), operating systems (UNIX, Linux, Windows), databases (Oracle DB and MS SQL DB), and

applications (Oracle, PeopleSoft, Salesforce, etc.).

• Design and perform root cause analysis, control gap assessments, and process improvement projects using technical and problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk implications, and draw the appropriate conclusions.
• Understand Industry standard frameworks for technology, such as COBIT, ISO, NIST, SANS, and others to design Governance, Risk and Control frameworks, and systems for technology and information security.
• Design and develop internal control documentation including narratives, process and data flows, and other supporting work papers.
• Moderate to in-depth understanding of business environment and risks associated with the financial services industry, IT environments, and information dataflow.
• Understand IT audit principles and audit procedures, and determining and evaluating the severity of potential issues identified during testing, and to provide guidance to more junior team members.
• Understand IT organization business processes and systems (IT Security, data management, architectural and planning, technology life cycle management, regulatory concerns).
• Participate in multiple projects concurrently, works under pressure well.
• Strong verbal and written communication skills with comfort around presenting new ideas and presentations to senior management.
• Demonstrated track record of meeting time commitments.
• Demonstrated track record of working effectively across functional and organizational lines.
• Demonstrated knowledge of risk management tools.
• Ability to work in teams, and/or as an individual contributor

• Thanks

  Govardhan

  Your Trusted Digital Technology Partner

  Email: ||