Superior Jobs

 

Principal Information Security Auditor

Apply
  • ID: 488551
  • Posted: 7/21/2021
  • Location: Rancho Cordova, CA
  • Category: Pro - Professional
  • Job Type: Temporary
  • Duration: 3 - 6 Months

Description

Acara Solutions is looking for a Principal Information Security Auditor for our Client located in Rancho Cordova, CA.   
  • The Principal Information Security Auditor is responsible for leading, developing and completing integrated internal audits in compliance with departmental and professional standards. 
  • Acts as the principal technical leader for auditing complex information security technologies, assessing security frameworks, security and privacy architecture designs, regulatory and business risk management, security and privacy incident management, application and system change control vulnerability management.
  • Develops IT, cybersecurity and privacy audit programs and special consulting projects, leads audit testing and CAP reviews, and delivers audit reports to audit management
  • Lead or participate in complex information technology audits of IT areas to assess the adequacy of internal controls and compliance with Company and departmental goals, objectives and standards
  • Perform and document audit activities utilizing a comprehensive audit approach (policies, procedures, processes, controls and measures) to address financial, compliance, IT and operational risks in accordance with professional standards
  • Researches and interprets governmental laws, regulations, and compliance requirements for review
 
Pay and Benefits:
 The salary for this position is $130k per hour (Max Pay rate).
 
Job Requirements

 
Required Skills / Qualifications:
  • Bachelor's degree in management information system or computer science or engineering.
  • Minimum 8 years of hands-on technical information security/privacy experience.
  • Minimum 5 years" experience in information technology systems and security assessments or security by design testing.
Preferred Skills / Qualifications:
  • One existing certification  from each of the following categories, which must be currently maintained and valid.
  • General Audit Certification: Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified Fraud Examiner (CFE)
  • IT Audit Certification: Information Technology Infrastructure Library (ITIL), Certified Information Systems Auditor (CISA), Certified in Risk and Information System Control (CRISC), Certified in Risk Management Assurance (CRMA), Certified in Governance of Enterprise IT (CGEIT), Cisco Certified Network Associate/Professional (CCNA, CCNP)
  • IT Security/Privacy Certification: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Quality Security Assessor (QSA), Payment Card Industry Professional (PCIP), Certified Ethical Hacker (CEH), Microsoft Certified Professional/Security Engineer (MCP, MCSE)
  • Expert level knowledge of security principles and technologies with
  • Big 4 or regulatory compliance consulting experience applying broad risk and threat assessment methodology experience across information technology, security, privacy and business
  • Demonstrated leadership skills in identifying and analyzing regulatory, security and privacy vulnerabilities in the following:
  • Finance regulatory compliance testing such as NAIC/MAR, SOX, EHNCA, ICFR.
  • Information technology compliance testing such as ISO27001/2013, COSO, AICPA/SOC(I,II,III)
  • Information security compliance testing such as CMS ARS, CIS, CSA
  • Information privacy compliance testing such as HIPAA (45 CFR), GDPR, CCPA, NYCRR.
  • GRC frameworks such as NIST (800-36), ISO (27k series), COBIT, ITIL, GAAS 
  • Compliance crosswalk methodologies and models such as SCF, CCF, UCF, RMF, HITRUST 
  • Proven leadership with multiple cross-functional teams in a deadline-driven environment
  • Excellent written reporting and presentation skills
  • Clean credit history as reported by credit report
     
Additional Information:
  • Upon offer of employment, the individual will be subject to a background check and a drug screen.
  • Ability to travel approximately 25% of the time
  • The working environment is generally favorable. Lighting and temperature are adequate, and there are no hazardous or unpleasant conditions caused by noise, dust.


Aleron companies (Acara Solutions, Aleron Shared Resources, Broadleaf Results, Lume Strategies, TalentRise, Viaduct, and Aleron's strategic partner, SDI) are Equal Employment Opportunity and Affirmative Action Employers. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity, sexual orientation, national origin, genetic information, sex, age, disability, veteran status, or any other legally protected basis. The Aleron companies welcome and encourage applications from diverse candidates, including people with disabilities. Accommodations are available upon request for applicants taking part in all aspects of the selection process.

Applicants for this position must be legally authorized to work in the United States. This position does not meet the employment requirements for individuals with F-1 OPT STEM work authorization status.
Apply
 

Already have an account? Log in here