As a strategic role, this position will have direct responsibility for the management of the Internal Audit cybersecurity program and interact extensively with IT, InfoSec, Engineering, and Senior Leadership
Oversee cybersecurity audit portfolio with emphasis on Application/Infrastructure, Product, and Manufacturing security
Prepare and provide written and oral reports, communications and/or presentations to management regarding observations and recommendations for internal control improvement(s) and facilitating management action plan(s)
Manage management requests for internal control assessments, process and procedure evaluations, and internal control education
Assist continuous risk management and oversight functions by staying apprised, engaged, and trained in emerging technologies and technology risks which feed into the development of IT risk assessments and audit programs
Advise leadership on risk oriented and prioritized improvements in control processes; including opportunities to utilize automation to drive standardization and efficiencies
Establish staff development and engagement initiatives
What You’ll Bring
10 + years of IT Auditor Information Security experience with a management role
Bachelor’s Degree inMIS/AIS, Cybersecurity, Computer Science; and at least one professionalcertification required such as CISA, CISSP, CGEIT, CPA, CIA, etc., or equivalent
Proven leadership experiencethat emphasizes knowledge of IT Risk Management, Finding and RemediationManagement, IT Audits, and Data Privacy/Security assessments
Familiarity andunderstanding of major professional audit frameworks and standards (NIST, ISO27001, ITIL, COBIT, PCI-DSS, etc.)
Experience inperforming product security assessments in the areas ofauthentication/authorization and privileged access control
Experience inperforming operational technology security assessments for resilient industrialsystems