Internal Auditor

at Experis
Location Rancho Cordova, CA
Date Posted April 26, 2021
Category Default
Job Type Contractor

Description

Position Details:

Job Title: Internal Auditor

Location: Remote

Duration: 6+ months(with possible conversion to full time)

This auditor role will be within IT space and an Internal IT Auditor.

Resource needs to be adaptable, see big picture in risk assessment.

Must understand the controls around IT systems access and rights management.

Experience with NIST, ISO, etc. is needed.

Understanding of GRC, CSF, BYOD on mobile.

Ability to create work streams is a must.

Any experience with the Big 3 is great - SOX, HIPPA and PCI.

NICE TO HAVE: General Audit Certification:

- Certified Information Systems Auditor (CISA)

- Certified Internal Auditor (CIA)

- Certified Fraud Examiner (CFE) IT Audit Certification:

- Information Technology Infrastructure Library (ITIL)

- Certified in Risk and Information System Control (CRISC)

- Cisco Certified Network Associate/Professional (CCNA, CCNP) IT Security Certification:

- Certified Information Systems Security Professional (CISSP)

- Certified Information Security Manager (CISM)

- Certified Ethical Hacker (CEH)

- Microsoft Certified Professional/Security Engineer (MCP, MCSE)

Minimum Qualifications

  • BA/BS degree, or 4 additional years of equivalent experience
  • A minimum of 7 years as lead IT & Security auditor.
  • A minimum of 5 years demonstrable IT & Security experience in regulatory requirements such as CMS, PCI, HIPPA, SOC2, SOX IT GCC.
  • A minimum of 3 years compliance, security, and/or risk management experience using ISO, NIST or HITRUST frameworks.
  • Exposure to compliance testing in IT & network infrastructure, security, and risk management using ISO or NIST frameworks

Minimum Required License/Certification

One existing certification from the list (or equivalent), which must be currently maintained and valid.

General Audit Certification:

  • Certified Information Systems Auditor (CISA)
  • Certified Internal Auditor (CIA)
  • Certified Fraud Examiner (CFE)

One existing certification from the list (or equivalent), which must be currently maintained and valid.

IT Audit Certification:

  • Information Technology Infrastructure Library (ITIL)
  • Certified in Risk and Information System Control (CRISC)
  • Cisco Certified Network Associate/Professional (CCNA, CCNP)

One existing certification from the list (or equivalent), which must be currently maintained and valid.

IT Security Certification:

  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Ethical Hacker (CEH)
  • Microsoft Certified Professional/Security Engineer (MCP, MCSE)

Preferred Role Experience

  • Demonstrated experience in Principal role conducting IT Security & Compliance Audits.
  • Preference to individuals who have graduated with IT/engineering related degrees.
  • Preference to individuals who have experience with Data Privacy regulation assessment.
  • Previous experience in the financial services & healthcare services industry.
  • Experience with one or more general IT control frameworks such as ISO/IEC 27K, NIST 800, COBIT 5.
  • Exposure to the following compliance control frameworks MAR (IT), SOC 2, HIPAA, PCI and an understanding of the general compliance requirements related to information technology.
  • Demonstrate and apply a thorough understanding of complex information systems and data classifications for testing of IT general controls (ITGC) and IT Application Controls (ITAC).

Drop files here browse files ...