JOB DESCRIPTION
We are looking for an experienced IT Risk & Security Auditor to join our team. This role requires a strong background in IT security, risk management, and audit processes. The ideal candidate will have experience assessing compliance frameworks, conducting security audits, and collaborating with key stakeholders and application owners to enhance security and compliance measures. Responsibilities:
-Conduct IT risk assessments and audits to ensure compliance with industry standards and internal policies.
-Evaluate security controls across frameworks such as Archer, PCI, SoX, HIPAA, NIST 800-53, and CPNI. Identify vulnerabilities and recommend strategies to mitigate security risks. -Collaborate with business and technical teams to align security and risk management practices.
-Utilize security assessment tools and methodologies for network, application, and cloud environments.
-Maintain relationships with stakeholders, leadership, and business partners to support security initiatives.
REQUIRED SKILLS AND EXPERIENCE
Experience: • 6+ years of experience in the following areas --> IT Security --> IT Risk Management --> Corporate Risk & Audit --> IT Internal Audit --> Information Security --> Technical Privacy Education & Certifications:
• Bachelor’s degree in MIS, Computer Science, Accounting, or a related business field (or equivalent work experience).
• Actively holding or pursuing one of the following certifications: ○ Certified Information Systems Security Professional (CISSP) ○ Certified Information Security Manager (CISM) ○ Certified Information Systems Auditor (CISA) ○ (Preferred) Certified Ethical Hacker (CEH) Technical Skills:
• Experience conducting IT Security Audits, Risk Assessments, and Compliance Reviews.
• Strong understanding of security policies, governance, and risk management strategies.
• Experience with GRC (Governance, Risk, and Compliance) framework tools- ○ Archer, MetricStream, LogicGate, SAP GRC, ServiceNow GRC, OneTrust, IBM OpenPages, Riskonnect ** Archer is preferred
• Familiarity with security tools and methodologies for UNIX, Windows Servers, databases (Oracle, SQL, DB2, etc.), mainframe, firewalls, routers, and cloud computing.
*This person will be responsible for helping build out the team's Risk/Compliance framework and documentation processes
NICE TO HAVE SKILLS AND EXPERIENCE
-Banking background
-Comfortable with a high volume of work Local to Austin, TX or Charlotte, NC
Compensation: $40/hr to $50/hr **Exact compensation may vary based on several factors, including skills, experience, and education. Employees in this role will enjoy a comprehensive benefits package starting on day one of employment, including options for medical, dental, and vision insurance. Eligibility to enroll in the 401(k) retirement plan begins after 90 days of employment. Additionally, employees in this role will have access to paid sick leave and other paid time off benefits as required under the applicable law of the worksite location.
