IT Audit Security Analyst III

Securus Technologies Inc
14 May 2019
30 May 2019
Job role
Contract type
Full time
Job Purpose:
Assist the IT Security Audit Manager in executing the framework for compliance with PCI–DSS, NIST 800–53, FISMA, FedRAMP, HIPAA, SOC 2, CJIS, etc. and executing a comprehensive, risk–based internal audit plan for the company?s IT security compliance requirements.


Essential Duties:
  • Perform gap assessment, compliance readiness, and monitoring activities across Securus and its subsidiaries
  • Develop a master control list, including clearly written failure points and testing procedures that effectively address the risks, controls and compliance issues
  • Ensure work papers and evidence are in accordance with professional auditing standards
  • Prepare formal reports with tangible and cost–effective recommendations for management regarding the adequacy and effectiveness of compliance programs
  • Follow up and validate the implementation of Plan of Action and Milestones (POA&M) to address audit results and recommendations
  • Estimate required resources to complete assigned tasks and set realistic deadlines
  • Maintain industry knowledge to interpret, advise and support IT compliance program
  • Provide advisory services to IT for regulatory compliance areas
  • Document data flow processes, narratives, testing procedures and results
  • Maintain compliance database to ensure complete and timely reporting
Knowledge, Skill, and Abilities:
  • Strong knowledge of UNIX, Windows, Linux/CentOS, Oracle, MySQL, SQL Server, router, firewall, SIEM, FIM, DLP, VPN, IDS, strong authentication, and web services
  • Solid understanding of IT processes including operations, security, configuration, change management, incident response, and disaster recovery
  • Knowledgeable in information security concepts, risk analysis, data privacy, etc.
  • Ability to prioritize tasks, manage multiple projects, and meet deadlines with little day–to–day instructions
  • Intermediate level knowledge of the following: Microsoft Office Application (excel), and Data Analysis Tools


Minimum Qualifications:
  • B.A. / B.S. Degree in IT, Cyber Security, or Computer Science ?or equivalent qualifications
  • 3+ years? hands–on work experience in some of PCI–DSS, NIST 800–53, FISMA, FedRAMP, HIPAA, SOC 2, SOX, etc.
  • Professional certification: CISSP, CISA, CISM, CRISC, CIPP, CIA, etc.
Preferred Qualifications:
  • QSA / ISA / FedRAMP qualification desired
  • Master?s degree in IT or Cyber Security
Physical Requirements:
Standing, sitting, walking, speaking, listening, bending, reaching, pushing, pulling, lifting, grasping and manipulating tools, typing, using peripheral computer tools.? May be required to lift up to 25 pounds.?

It is the Company?s policy to provide equal employment opportunity to all individuals. Securus will not discriminate against any associate or qualified job applicant with respect to any terms, privileges, or conditions of employment because of that person?s race, color, religion, sex, national origin, age, disability, veteran status, or any other characteristic or status protected under local, state or federal law, ordinance or regulation.