NewRochelleRecruiter Since 2001
the smart solution for New Rochelle jobs

Information Security Senior Specialist for Audit Team

Company: EY
Location: Jericho
Posted on: September 19, 2022

Job Description:

At EY, youll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And were counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.Information Security takes a proactive approach to protecting EYs brand through robust technical security controls, a clearly defined security strategy and ongoing compliance and incident management programs designed to detect and protect against increasingly sophisticated threats against the organization.The opportunityThe primary function of the Information Security Audit Specialist is to liaise with external auditors to facilitate the audit for EY Technology, namely the Client Technology, Enterprise Technology and Information Security. The candidate coordinates audits to be executed with internal and external groups and ensures successful delivery of audits, in line with agreed methodology and guidelines. The candidate is also responsible for coordinating pre-assessments, evaluating and advising leadership on the readiness for the commencing of external audits, and coordinating all activities related to the audits such as document requests, evidence collection, and liaising with the external auditors and internal departments involved in the audits. Audit team members are also responsible for the implementation, maintenance, consulting, and management of ISMS (ISO 27001/27017) for EY Global and other entities.Your key responsibilities

  • Supporting and leading all aspects of the SOC 1/2, Hitrust audit life cycle,
  • Interacting with external auditors
  • Liaises with internal auditors, external auditors, vendors and outside consultants as necessary for independent security audits
  • Collecting and monitoring progress of auditors requests collection
  • Coordinating internal pre-assessments in preparation for external audits and certifications
  • Working with stakeholders to document corrective actions, assess risk
  • and track remediation and report progress
  • Identifies risks and escalates potential project issues to management as required
  • Monitors remediation activities in-scope for external audits
  • Coordinates with managers and IT leadership on audit scheduling, evidence gathering, audit interviews and remediationSkills and attributes for success
    • Experience in responding to external audits in a global environment (SOC 1/2 and Hitrust)
    • Working knowledge of SOC 2 Trust principles, Hitrust CSF and ISO 27000 frameworks
    • Strong English language skills are required written and verbal
    • Good time management, interpersonal, communication, organizational, and decision-making skills
    • Fluency in MS Office (Word, Excel, PowerPoint)To qualify for the role, you must have
      • Maintain awareness of the current security threat landscape and information security frameworks (ISO27001, SOC 1 and SOC 2)
      • Thirst for knowledge and desire to develop your career
      • Ability to team well with others to facilitate, schedule, and coordinate required audit activities
      • ISO 27001 Lead Auditor/Implementor certification is a plusIdeally, youll also haveOne of the following or equivalent certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA), Certified Internal Auditor (CIA), or Global Information Assurance Certification (GIAC) in related area, or other equivalent certification.What we offerAs part of this role, you'll work in a highly integrated, global team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial and social well-being. Your recruiter can talk to you about the benefits available in your country. Heres a snapshot of what we offer:
        • Continuous learning: Youll develop the mindset and skills to navigate whatever comes next.
        • Success as defined by you: Well provide the tools and flexibility, so you can make a meaningful impact, your way.
        • Transformative leadership: Well give you the insights, coaching and confidence to be the leader the world needs.
        • Diverse and inclusive culture: Youll be embraced for who you are and empowered to use your voice to help others find theirs.Please apply to this role only through the Apply link (not through the local office). Your application will then be routed to the appropriate recruiting team.The exceptional EY experience. Its yours to build.EY - Building a better working worldEY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.EY is an equal opportunity, affirmative action employer providing equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law.EY is committed to providing reasonable accommodation to individuals with disabilities. If you are a qualified individual with a disability and either need assistance applying online or need to request an accommodation during the interview process, please call 1-800-EY-HELP3, type Option 2 (HR-related inquiries) and then type Option 1 (HR Shared Services Center), which will route you to EYs Talent Shared Services Team or email SSC Customer Support at ssc.customersupport@ey.com .

Keywords: EY, New Rochelle , Information Security Senior Specialist for Audit Team, Accounting, Auditing , Jericho, New York

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Log In or Create An Account

Get the latest New York jobs by following @recnetNY on Twitter!

New Rochelle RSS job feeds