Military Spouse Connection Jobs

Job Description

* Develop and execute comprehensive internal audit plans for IT security and IT business applications, aligned with industry best practices and regulatory requirements (SOX, etc.).

* Lead and manage a team of internal auditors in conducting risk assessments, control testing, and IT-related audits.

* Identify, evaluate, and report on IT security vulnerabilities and control weaknesses.

* Develop and implement recommendations for improving IT security posture and IT controls.

* Partner with IT management to remediate identified control deficiencies and security vulnerabilities.

* Stay current on emerging IT security threats and best practices.

* Communicate effectively with senior management and the Board of Directors regarding IT security and control risks.

* (Optional, depending on your company's needs) Contribute to the development and implementation of an Enterprise Risk Management framework

Data management internal audit experience. Topics including:

1. Data governance: Review of data ownership, accountability, data labeling and data classification.

2. Data quality: Assessment of data accuracy, completeness, and consistency.

3. Data security: Evaluation of access controls, encryption, and incident response plans

4. Data privacy: Review of personal data handling practices and compliance with regulations like GDPR and CCPA.

5. Data retention and disposal: Assessment of data archiving and deletion processes.

6. Data backups and recovery: Evaluation of backup procedures and disaster recovery plans.

7. Data management policies and procedures: Review of documentation and adherence to established protocols.

8. Data inventory and classification: Assessment of data categorization and handling practices

9. Data sharing and collaboration: Evaluation of data sharing agreements and interorganizational data exchange.

10. Compliance with regulations and standards: Review of adherence to relevant laws, regulations, and industry standards (e.g., HIPAA, PCI-DSS, ISO 27001).

The data management audit activities typically involve:

* Contribute to internal audit planning and scoping processes

* Data collection and review

* Interviews with key personnel

* Observations of data management practices

* Analysis of findings and identification of gaps or weaknesses

* Reporting and recommendations for improvement

* Preparation of working papers, memos, draft reports in accordance with IA methodologies

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

Skills and Requirements

* 7+ years of experience in internal auditing, with a minimum of 3 years focused on Data Management Audits

* Experience working in Internal Audit at a Large Financial Institution (as either consulting or internal employee)

* Proven experience in leading and managing internal audit teams.

* Strong understanding of IT security frameworks (e.g., NIST CSF).

* In-depth knowledge of internal controls over financial reporting (SOX). Experience with SOX readiness assessments and compliance.

* Knowledge of Governance, Risk, and Compliance (GRC) technologies.

* Excellent communication, interpersonal, and leadership skills.

* Certified Information System Auditor (CISA) * Certifications: Certified Internal Auditor (CIA) , Certified Public Accountant (CPA),

* Experience with Enterprise Risk Management (ERM) a plus.

* Familiarity with vendor risk management best practices.

* Understanding of SOC 1, 2, and 3 reporting frameworks.

* Expertise in information security for internet, intranet, wireless, and cloud applications.

* Experience with internal business process and IT audit methodologies, including risk and control assessments null

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to HR@insightglobal.com.