Job Description
Roles and Responsibilities
1. Work closely with auditors throughout the audits end-to-end
2. Work closely with internal stakeholders for evidence gathering and validation
3. Central point of contact for the audits
4. Review of scope documentation and getting the self-identified issue filled along with approvals
5. Review of scope control documents and supported policy, standard and process documents
6. Collection of responsive documentation and evidences
7. Drafting of responsive communications and articulations
8. Review of documentation and response to auditors
9. Tracking of requests and responsibility to ensure outstanding requests are satisfied
10. Tracking of management action plan with stakeholders, validation of responses, evidences, and follow-up still closure
11. Able to own and resolve problems in a timely manner
12. Strong ability to manage multiple tasks and deadlines simultaneously
13. Exceptional organization, initiative, prioritization
14. Professional, focused communication and interpersonal skills
15. Collaborative approach, teamwork oriented
Desired Candidate Profile
- Bachelors or master’s degree in computer science or equivalent
- 5+ years of overall experience with Information Technology
- 3+ years of deep experience with Information Security and audits
- Extensive information security experience across broad security domains.
- Knowledge and experience of industry standards such as ISO 27001, Cyber Essentials, Cyber Essentials Plus
- Broad understanding of technology and legal applications preferred
- Understand compliance, legal and ethical obligations organizations should have with respect to logical and physical security, personally identifiable information and data protection
- In-dept knowledge in technology services and functions
- Better understanding and ability to assess risks in all situations
- Excellent verbal and written communication skills.
- Good to have Certifications in IT security e.g., CISSP, CISM, CCSP