IT Audit and Security Assurance Specialist

Job Title: Security Assurance and Audit Specialist

We are currently seeking a Security Assurance and Audit specialist with technical and security expertise, particularly experienced in leading and performing audit and assurance engagements related to ISO27001.

This role involves joining an existing team at our financial services client operating in a highly regulated environment.

The main responsibilities include providing expertise and support for various Technology and Security Assurance projects and contributing to the development and delivery of the 2^nd Line Risk Assurance plan.

Applicants with a background in “Big 4” consultancy firms will be of particular interest.

Key Responsibilities:

1. Development of the assurance process and framework.
2. Obtaining and maintaining ISO27001 Lead Auditor certification.
3. Performing control testing, control walkthroughs, and gathering evidence from the 1st Line Business team.
4. Conducting internal risk and control assurance to evaluate control effectiveness and ensure compliance with internal policies, standards, and industry frameworks.
5. Documenting control testing and preparing reports for senior management review.
6. Collaborating with stakeholders in the 1st line team to identify remedial actions for issues identified during testing.
7. Supporting the creation of a control library and reviewing controls to ensure alignment with internal policies and external frameworks such as CRI, ISO, NIST, ISAE.
8. Performing internal control assessments/audits for SWIFT CSCF, LINK CSB, ISO27001, and ISO22301.
9. Developing internal assurance documentation.
10. Preparing submissions for risk governance committees.

#LI-DNI

#J-18808-Ljbffr