Information Security Auditor, Advisor - Zebra Technologies
Lincolnshire, IL
About the Job
Remote Work: Hybrid
Overview:
At Zebra, we are a community of innovators who come together to create new ways of working to make everyday life better. United by curiosity and care, we develop dynamic solutions that anticipate our customer’s and partner’s needs and solve their challenges.
Being a part of Zebra Nation means being seen, heard, valued, and respected. Drawing from our diverse perspectives, we collaborate to deliver on our purpose. Here you are a part of a team pushing boundaries to redefine the work of tomorrow for organizations, their employees, and those they serve.
You have opportunities to learn and lead at a forward-thinking company, defining your path to a fulfilling career while channeling your skills toward causes that you care about – locally and globally. We’ve only begun reimaging the future – for our people, our customers, and the world.
Let’s create tomorrow together.
The Information Security Auditor, Advisor is seen as an IT and Security consultant and manages execution of risk-based operational and Sarbanes-Oxley (SOX) audits. Reporting to the Information Security Director, the Information Security Auditor, Advisor is responsible for influencing business decisions by imparting value-driven insights to all levels of Management. Through strong collaboration and communication, the Information Security Auditor, Advisor will evaluate risk management practices and emerging technologies to drive enhancements within the company’s strategy and execution.
Responsibilities:
+ Lead the pre-audit lifecycle from planning to reporting of IT, cybersecurity, product security and integrated projects, and communicate value-driven recommendations to business & IT leaders; May take the lead role on highly complex Security initiatives
+ Lead the execution of IT general & application controls compliance pre-auditing, while advising business & IT leaders on optimal control structure and serving as the primary connection point for the IT-GRC, SOX Project Management Office and internal auditors
+ Engage in ERM and IT-GRC activities to evaluate top IT & security risks and consult with management on progress towards addressing these risks and industry trends. Assist the Director in developing and maintaining an effective risk-based Information Security Audit Plan
+ Innovate and leverage well-rounded business & IT acumen to assess (and coach others on assessing) emerging risk areas across Zebra’s global operations and advise on leading industry practices and process maturity
+ Partner with the Internal Audit Analytics Advisor in the department’s development of leading- class continuous auditing techniques and data analytics for the areas of IT & security
+ Provide Internal Auditors with appropriate guidance and coaching on career development
+ Assist the Director in the management of outside resources assisting Security
+ Monitor and report on the status of management-owned action plans from previous audits
+ Manage department key performance metrics and actively engage in the continuous improvement of the Information Security department
+ Create reports that highlight areas where process or technology (i.e. IT infrastructure) may be improved
+ Recommend changes to controls, processes, and procedures to ensure data integrity and security and improve operational efficiency and appropriate suggestions to achieve the improvements
Prepare appropriate documentation (e.g. narratives, flowchart, control matrices, segregation of duties analyses, application controls, audit reports, etc.) in support of all assurance and consulting work performed
Qualifications:
Minimum Qualifications:
+ Bachelor's Degree in a business-related major (i.e., Finance/Accounting, Business Administration, Economics, Engineering, Management Information Systems, etc.).
+ 8 + years of relevant work experience (i.e., auditing, consulting, finance, operations, IT/security)
+ Candidates with a background in public accounting or consulting may be considered with 5 or more years of experience in that background
+ Strong communication skills; Able to communicate and influence at various levels
+ Completing tests around financial system controls compliance, IT General Computer Controls (ITGC), and Application Controls
+ Conduct information security compliance to policy audits (e.g. ISO2700X, NIST, etc.) to evaluate risk, compliance, and control effectiveness, focusing on long-term strategies for a public company
+ Certifications in relevant areas (i.e., CIA, CISA or other certification)
Preferred Qualifications:
+ Advanced degree preferred
+ Knowledge of IIA methodology and standards preferred
+ Working knowledge of industry IT frameworks such as COBIT, ISO and NIST preferred
+ Command over core IT & security processes (incl. relevant technologies)
+ Experience with project management, managing competing priorities and managing to tight timelines.
+ Strong judgment and commitment to driving results.
+ Strong creative and entrepreneurial spirit; Capable of critical thinking and solving problems.
+ Works effectively in an agile and team-based setting, focused on motivating and teaching staff, and engaging in diverse thought.
+ Cultivates & maintains cordial relationships with stakeholders while maintaining professional skepticism
and objectivity
Position Specific Information:
• Travel Requirements: Ability to travel 15%, including international travel
• Able to Telework? Yes – hybrid work approach
• Personal Protective Equipment (PPE) Required: No
• Safety Sensitive Role? No
Zebra is an equal opportunity/affirmative action employer committed to a diverse and inclusive workplace All qualified candidates will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identify, national origin, disability and protected veteran status or any other basis prohibited by law. If you are an individual with a disability and need assistance in applying for a position, please contact us at workplace.accommodations@zebra.com . We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment.
Know Your Rights:
https://www.eeoc.gov/sites/default/files/2022-10/EEOC_KnowYourRights_screen_reader_10_20.pdf
Cono zc a sus Derechos:
https://www.eeoc.gov/sites/default/files/2022-10/22-088_EEOC_KnowYourRightsSp_10_20.pdf
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
Zebra is a federal contractor and is committed to an alcohol and drug free workplace. As a result, all U.S. based employees are subject to the Drug and Alcohol Free Workplace Policy and Procedure.
Zebra Total Rewards includes more than just pay and is structured to meet the needs of our changing global business and evolving talent. We are committed to providing our employees with a benefits program that is comprehensive and competitive – including healthcare, wellness, inclusion networks, and continued learning and development offerings. We offer community service days, in addition to the traditional insurances, compensation, parental leave, employee assistance program and paid time off offerings depending on the country where you work.
Salary: USD 104400.00 - USD 156600.00 Yearly
Salary offered will vary depending on your location, job-related skills, knowledge, and experience.
Additionally, all Zebra roles are eligible for cash incentive programs. For example, sales roles have additional opportunity to earn substantial variable compensation tied to quota achievement. In most other roles, the Zebra annual cash incentive program links Company and individual performance together. Some roles may also be eligible for long-term incentive equity awards.
To protect candidates from falling victim to online fraudulent activity involving fake job postings and employment offers, please be aware our recruiters will always connect with you via @zebra.com (https://www.zebra.com/ap/en.html) email accounts. Applications are only accepted through our applicant tracking system and only accept personal identifying information through that system. Our Talent Acquisition team will not ask for you to provide personal identifying information via e-mail or outside of the system. If you are a victim of identity theft contact your local police department.
Source : Zebra Technologies