Security Information/Security Analyst

Florida  ‐ Onsite
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Description

Job Description:

The Senior IT Auditor works as part of a team of IT Auditors to assess risk, test controls and provide advisory services to IT Leadership and the Audit Services Department (ASD) at FNF. The Senior IT Auditor supports a variety of audits encompassing information technology, logical security, operational processes and compliance/regulatory activities.
This position will support the IT Risk Assessment, leading and completing the IT Audit Plan as well as execution of audit procedures designed to aid the ASD in achieving objectives for each audit engagement. This position includes internal and external client interface, and as such requires strong professional presence, communication and decision making skills. The successful candidate will be capable of identifying and addressing audit issues across a variety of business areas and risk exposures, including technology and operational matters. The ability to establish relationships and credibility within the Audit team and is a must. A broad understanding of Information Technology, security and controls and well as experience in in the financial service industry is a must.

Responsibilities

Assist in the assessment of risks and development of a risk based audit plan and associated work programs within a risk-based internal audit plan
Perform walk throughs of processes, identifying controls and preparing and executing audit requests
Complete work-papers and other audit materials that meet all relevant professional practice requirements
Develop and foster constructive professional relationships
Contribute to a high performance environment with an execution focus
Participate in select internal improvement initiatives

Qualifications

(3-7)+ years of experience in an IT audit function
Strong professional presence, communication and decision making skills
Must have the ability to establish exceptional relationships and credibility with internal clients
Familiarity and practical application of IT Security and control frameworks (eg: HiTRUST, FFIEC IT Booklets and Cyber Security Framework, COBIT, etc.

Technical proficiency in four or more of the following areas:

Application Security, role design, monitoring
Business Continuity & Disaster Recovery Planning
Client Services & Implementations
Computer Operations (including capacity, performance, and problem management)
Database Administration & Security (including Oracle, Microsoft SQL)
Operating System Administration & Security
Information Security & Data Privacy Programs and Frameworks
Network & Infrastructure Architecture and Security (including network segmentation concepts, Firewalls, Routers, VPN solutions etc.)
Physical Security & Data Center Environmental Controls
Systems Development (including SDLC, project management and change control methodologies)

Education:

Bachelor's degree from an accredited college or university in Information Technology, Information Systems, Accounting and/or Business;

Desired Qualifications

Big 4 or Regional Audit/Consulting Firm experience in a Risk Assurance and/or Risk Advisory capacity
IT Internal Audit Experience CISA, CISSP, CISM, Security +, CEH and/or other Certifications a plus (CIA, CFE, etc.)
Financial services experience, including working in regulated environments
Knowledge of HiTRUST, COBIT5, ISO 27001, ITIL, NIST, FFIEC Standards

Start date
n.a
From
Software Specialists
Published at
02.12.2016
Project ID:
1248817
Contract type
Freelance
To apply to this project you must log in.
Register