Key Responsibilities:
* Security Audits: Conduct thorough security audits of the company systems to evaluate the effectiveness of security controls and identify vulnerabilities.
* Risk Assessment: Perform risk assessments to identify potential security threats and weaknesses in IT infrastructure, applications, and processes.
* Compliance Monitoring: Ensure compliance with relevant security standards and regulations (e.g., PCI-DSS, GDPR, ISO 27001) by evaluating existing security policies and practices.
* Incident Response Evaluation: Review and assess the effectiveness of incident response plans and security incident management processes.
* Security Framework Implementation: Collaborate with IT and security teams to implement security frameworks and best practices that align with industry standards.
* Reporting and Recommendations: Prepare detailed audit reports highlighting security findings, risks, and actionable recommendations to enhance the organization's security posture.
* Stakeholder Collaboration: Work closely with cross-functional teams, including IT, compliance, and risk management, to promote a culture of security awareness and best practices.
Requirements
* Bachelor's degree in information technology, Cybersecurity, Computer Science, or a related field.
* Relevant certifications such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified Risk and Information Systems Control (CRISC) are strongly preferred.
* Minimum of 5-7 years of experience in IT auditing with a focus on security, preferably within the fintech industry.
* Proficiency in security auditing methodologies and tools, including experience with vulnerability assessment tools and security information and event management systems.
* Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and risk management principles. Familiarity with application security practices and secure software development lifecycle (SDLC) is essential. Experience in assessing third-party security risks and conducting vendor security assessments.
* Exceptional analytical and problem-solving abilities, with strong communication skills to convey complex security issues to both technical and non-technical audiences. Detail-oriented with excellent organizational skills.
* Willingness to travel internationally as needed for audit engagements.
Benefits
* Private Health Insurance
* Performance Bonus
#J-18808-Ljbffr