Security-Engineer III / Senior Technology Audit Engineer - 21-01192

Akraya Inc.
San Jose
06 Apr 2021
28 Apr 2021
Job role
Contract type
Full time
Title – Senior Technology Audit Engineer
Primary Skills: Audit Engineer, SOC2, ISO 27001, HITRUST, Cloud Security
Location Remote Rome
Duration: 18 Months
Contract Type: W2

Candidate should have a clear understanding and experience implementing at least one major cloud certification (SOC2, ISO 27001, or HITRUST), and understand the cloud authorization processes

Role Responsibilities
This critical role will be responsible for performing digital and security audit assignments covering the clients products. Candidate are expected to have expert level information technology audit experience and deep working knowledge in performing information technology audits conforming to professional standards. Work assigned to internal auditors will be well–defined and they are expected to be carried out with limited supervision. The complexity and size of audit assignments will vary significantly engagement to engagement. The role will require a develop and fostering of positive relationships between the audit function and the business units. Additionally, this candidate should have expertise working with partners and collaborating with co–source provider(s) on various audit engagements.

• Minimum of 3 years of experience working within an internal audit or IT compliance function as an internal employee or as part of Big 4/Public accounting firm.
• Professional certification such as: ISO 27001 Lead Auditor, CISA, CISSP, CRISC or similar Internal Audit related certification(s).
• Proven experience leading and executing compliance audits: internal gap assessments, remediations with customers, internal assessment (audits), reviewing control language with external auditors against evidence.
• Understanding of the COBIT framework and Common Controls
o Control frameworks such as SOC2, ISO27001, PCI–DSS, HITRUST, HIPPA, GDPR, NIST–CSF, etc.
• Experience leveraging audit workpaper systems, Data Analytics solutions, RPA audit technologies and Agile audit methodologies in the execution of audit engagements.
• Experience creating, authoring and drafting ISMS, SOA, Risk Assessments, Systems Descriptions and others
• Experience auditing Cloud Service Providers (e.g., AWS, Azure, etc.), plus agile SDLC methodologies and Cyber Security.
• Proven analytical ability to assess information system compliance against internal standards and policies, as well as all pertinent external regulatory requirements.
• Strong leadership and communication skills, technical knowledge in all control domains, and the ability to write at a publication quality level in order to communicate findings and recommendations to the senior management team
• Solutions oriented, with a track record of identifying and implementing creative solutions and rolling up your sleeves to "get it done".

Minimum Requirements
• Minimum of 3 years' experience performing audits of Domain Controls, Information Security Controls, Application / Automated Controls, etc.
• Strong recommended certification (one or more): ISO 27001 Lead Auditor, ISO 27001 Lead Implementor, CISA, CISSP, CRISC or similar Internal Audit related certification(s).
• Bachelors degree in Information Systems, Computer Science, and/or Business required from an accredited college/university.

Desired Skills/Qualifications/System Experience requirements:
• Secure Software Development Lifecycle experience a plus, with writing scripts and tools
• Moderate knowledge of GRC tools, processes, and policies

To follow up with any questions, please contact Parshuram at .

Akraya is an award–winning IT staffing firm and the staffing partner of choice for many leading companies across the US. We offer comprehensive benefits including Health Insurance (medical, dental, and vision), Cafeteria Plan (HSA, FSA, and dependent care), 401(k) (enrollment subject to eligibility), and Sick Pay (varies based on city and state laws).

If this position is not quite what you're looking for, visit and submit a copy of your resume. We will get to work finding you a job that is a better fit at one of our many amazing clients.

Akraya is committed to equal treatment and opportunity in all aspects of recruitment, selection, and employment without regard to gender, race, religion, national origin, ethnicity, disability, gender identity/expression, sexual orientation, veteran or military status, or any other category protected under the law. Akraya is an equal opportunity employer; committed to a community of inclusion, and an environment free from discrimination, harassment, and retaliation.

Similar jobs

Similar jobs