Information Security Auditor/Engineer - Diverse Linx
New Jersey, NJ
About the Job
Role: Information Security Auditor/Engineer
Location: NEW JERSEY (Onsite)
Duration: Full-time
Skill: Information Security Auditor
Diverse Lynx LLC is an Equal Employment Opportunity employer. All qualified applicants will receive due consideration for employment without any discrimination. All applicants will be evaluated solely on the basis of their ability, competence and their proven capability to perform the functions outlined in the corresponding role. We promote and support a diverse workforce across all levels in the company.
Location: NEW JERSEY (Onsite)
Duration: Full-time
Skill: Information Security Auditor
- 6 years of hands-on technical information security/privacy experience.
- One existing certification (or equivalent) from each of the following categories, which must be currently maintained and valid.
- General Audit Certification: Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified Fraud Examiner (CFE).
- IT Audit Certification: Information Technology Infrastructure Library (ITIL), Certified Information Systems Auditor (CISA), Certified in Risk and Information System Control (CRISC).
- Certified in Risk Management Assurance (CRMA), Certified in Governance of Enterprise IT (CGEIT), Cisco Certified Network Associate/Professional (CCNA, CCNP).
- IT Security/Privacy Certification: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Quality Security Assessor (QSA), Payment Card Industry Professional (PCIP), Certified Ethical Hacker (CEH), Microsoft Certified Professional/Security Engineer (MCP, MCSE).
- Big 4 or equivalent regulatory compliance consulting experience applying broad risk and threat assessment methodology experience across information technology, security, privacy, and business.
- Demonstrated leadership skills in identifying and analyzing regulatory, security, and privacy vulnerabilities in the following:
- Finance regulatory compliance testing such as NAIC/MAR, SOX, EHNCA, ICFR, or equivalent.
- Information technology compliance testing such as ISO27001/2013, COSO, AICPA/SOC(I,II,III) or equivalent.
- Information security compliance testing such as CMS ARS, CIS, CSA, or equivalent.
- Information privacy compliance testing such as HIPAA (45 CFR), GDPR, CCPA, NYCRR, or equivalent.
- GRC frameworks such as NIST (800-36), ISO (27k series), COBIT, ITIL, GAAS, or equivalent.
- Compliance crosswalk methodologies and models such as SCF, CCF, UCF, RMF, HITRUST, or equivalent.
Diverse Lynx LLC is an Equal Employment Opportunity employer. All qualified applicants will receive due consideration for employment without any discrimination. All applicants will be evaluated solely on the basis of their ability, competence and their proven capability to perform the functions outlined in the corresponding role. We promote and support a diverse workforce across all levels in the company.
Source : Diverse Linx