This role will be responsible for performing risk assessments and internal audits, including associated tasks (e.g., risk assessment, data collection and filing, issue/risk log, timely reporting of results, etc.). The activities include working with cross functional teams to ensure the appropriate design and effectiveness of Cornerstone controls, coordinating internal assessments/audits, contributing to policy and standards updates, responding to customer assessment/audit requests, and producing risk/audit/compliance reports, metrics, scorecards and dashboards.
In this role you will..
Work closely with the global Security and Compliance Team to implement security standards across the organization
Perform IT audits, security compliance and risk assessments in all areas of the organization in line with the global Internal Audit schedule
Ensure audit findings and evidence are collected, reviewed, remediated, and presented in a clear and concise manner
Document quality audit procedures, recommend remediation plans and liaise independently with stakeholders to validate implementation
Publish and present timely and quality audit reports and risk assessments
Interface and partner with cross functional leaders from engineering, operations, IT and other functions on designing effective controls to improve security compliance and manage risk
Identify business, cybersecurity and technology risks, evaluate internal controls to treat risks, and develop opportunities to continuously improve internal controls
Work with control owners to ensure control objectives and activities meet compliance standards for effectiveness and evidence, and ensuring operational efficiencies
Work with Cornerstone’s external audit partners and cross functional teams to schedule appropriate internal audit testing and/or risk assessments
Recommend updates to security policies, standards and procedures to address new industry practices, requirements and standards based on security and compliance requirements
You’ve got what it takes if you have..
Degree in Information Technology, Computer Science, or related field
3+ (IT Auditor) or 1+ (IT Audit Associate) years of experience in information security, compliance, audit and/or risk management
Experience performing IT / Information Security audits
Experience in auditing IT general controls, including logical security, physical security, change and problem management, data backup, and disaster recovery
Experience performing security risk assessments
Experience developing risk mitigation strategies
Adequate knowledge of latest security tools, technologies and control best practices for I&AM, encryption, system hardening, anti-malware, data leakage prevention, IDS/IPS, network architecture security, vulnerability management, etc.
Experience with major security frameworks (e.g., ISO 27001, SSAE 18, NIST, PCI DSS)
Exposure to auditing and/or securing leading cloud PaaS technologies platforms such as Amazon AWS, Google Cloud and Microsoft Azure
Maintain or planning to obtain professional certifications, such as CISA and ISO 27001 Lead Auditor/Implementer
Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalism
Excellent data analysis, documentation and articulation skills
Excellent communication, presentation and collaboration skills
Proficient with Microsoft Word, Excel, Access and other MS Office tools
#LI-KN1
Our Culture:
Our mission is to empower people, businesses and communities. A culture created less by what we do and more by who we are. When people ask what our team is about, we point to our core values: champion customer success, bring our best, achieve together, get stuff done, and innovate every day. We’re always on the lookout for new, curious and capable people who can help us achieve our goal and we are seeking diversity in the people who join our team. We want to make sure that our company reflects the demographic of our customers, clients, and the communities in which we operate. So if you want to work for a friendly, global, inclusive and innovative company, we’d love to meet you!
What We Do:
Cornerstone is a premier people development company. We believe people can achieve anything when they have the right development and growth opportunities. We offer organizations the technology, content, expertise and specialized focus to help them realize the potential of their people. Featuring comprehensive recruiting, personalized learning, modern training content, development-driven performance management and holistic employee data management and insights, Cornerstone’s people development solutions are successfully used by more than 75 million people in 180+ countries and in nearly 50 languages.
Cornerstone takes special care to ensure the security and privacy of the data of its users.
Check us out on Linkedin, Comparably, Glassdoor, and Facebook!
We want IT hardware manager for IT department Job Types: Full-time, Regular / Permanent Pay: Up to ₹35,000.00 per month...
Apply For This JobOverview Reporting to the Manager, Service Enablement, the ServiceNow Technical Specialist will be responsible for the operational health, administration, development...
Apply For This JobHaving knowledge of Hardware & Software with latest tech knowledge. Minimum 3-4 years experience in same field. Have to move...
Apply For This JobJob Role – IT Head Location – Bhubaneswar, Odisha We are looking for Senior Level Qualified IT Professional directly related...
Apply For This Job2-7 years contact center experience. Contact Center Design and Support: Avaya Collaboration, Contact Center, Call flows, Gateways. Extensive knowledge/experience with...
Apply For This JobUrgently Hiring Inside Sales Representative – Pune Experience – 2+ Years The Inside Sales Representative work with customers to identify...
Apply For This Job