Cybersecurity and IT Audit Manager - Risk Advisory

Recruiter
Blum Shapiro
Location
Boston
Salary
Competitive
Posted
14 Sep 2020
Closes
22 Sep 2020
Job role
Audit
Contract type
Permanent
Hours
Full time
Job DescriptionBlumshapiro, New England's largest regional accounting, tax and advisory firm, is seeking a Cybersecurity Manager for its Risk Management Advisory practice in Massachusetts (Boston and Quincy). The professional in this role will provide information security and compliance consultative services to middle–market/large organizations. Primary responsibilities will include the following:Provide expertise and deliver cybersecurity and IT audit services in the Massachusetts markets, with occasional travel outside MassachusettsAdvise clients in improving information security and cybersecurity practicesPerform information security risk assessments and cyber threat analysesPerform gap analyses according to various technology / compliance standardsUnderstand and document IT internal controls for organizations' process/data/workflowEvaluate and Test IT general and application controlsProvide hands–on contribution to cybersecurity and technology vulnerability assessment projectsDevelop creative, logical solutions and assisting in the presentation of findings and recommendations to clientsInteract with clients on a regular basis for various cyber–security and IT audit related projectsEnsure that the engagement is conducted in a timely and accurate manner and all significant matters have been identified, resolved, a documented in accordance with Firm policies and professional standardsPerform monthly billingLeveraging blumshapiro's collective technical knowledgeAttend professional networking events and speaking engagementsContribute to cybersecurity thought leadership contentDevelop potential referral sourcesCreate proposals and managing the proposal and sales process from initial conversation to contract signing, including collaborating with other experts and service lines within the firmDevelop new products/services that can be marketedEnhance technical expertise through training, involvement in trade organizations and by staying current on relevant industry developmentsParticipate in firm committees and initiativesExperience and SkillsBachelor's degree in cybersecurity, information technology, business information systems, accounting or a related field is requiredProfessional cybersecurity, technology consulting and/or IT audit background and/or experience preferredStrong experience evaluating the security of various IT infrastructure, servers, networks, domains and other systems using security tools is preferredKnowledge of various security compliance standards and best practices (ex: ISO 27002, CSA, PCI, CIS, NIST 800 Series)One or more of the following certifications (CPA,CISA,CIA,CISSP,CRISC ) preferredUnderstanding of various security governance frameworks (ex: COBIT, COSO, NIST CSF, ISO 27001)Strong knowledge of IT audit and reporting frameworks (ex: SOC–1, SOC–2, Shared Assessments)Strong business development and selling skills, generating leads, making contacts and securing clientsAbility to problem–solve and think both creatively and logicallyA demonstrated ability to self–direct and effectively organize, prioritize and manage multiple projects under tight deadlinesAbility to create various types of reports: presentations, findings/recommendation and workflow documentsOutstanding leadership and talent development experienceExcellent analytical and organizational skillsExceptional written and verbal communication skillsProficient with MS Office tools (Office365, Word, Excel, Access, PowerPoint, Visio, Teams)EOE

Similar jobs

Similar jobs