Information Security Risk Auditor

Responsibilities

• Lead assessments of controls, action plans, and processes to validate evidence of control effectiveness
• Perform periodic reviews of controls and procedures to ensure compliance with frameworks and obligations
• Prepare draft summary assessment results for management and assist in control design efforts

Qualifications

• Associate's degree (or higher) in Information Security, Risk Management, Business, or related field
• 3+ years of experience in information security auditing, compliance, or risk management
• 1+ years of experience working collaboratively across teams in a matrixed environment
• Intermediate level of experience with control design, GRC tools, and evidence collection processes