Information Security (IS) Audit Manager
Apply NowCompany: Kahn Litwin Renza
Location: Boston, MA 02115
Description:
KLR is ranked as one of the top one hundred accounting and business consulting firms in the United States. KLR operates six (6) offices in FL, MA, RI and Switzerland and has more than 280 professionals.
We are seeking an Information Security (IS) Audit Manager to join our Boston office.
The Information Security (IS) Audit Manager is responsible for supporting the KLR Information Security team in examining, evaluating, and verifying the adequacy of internal controls in client's information technology, information security and IT infrastructure systems. Working with the IS Partner-In-Charge, the IS Audit Manager will be a key contributor in the continued development of the KLR Information Security Group
Job Responsibilities
Other Duties:
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required for this job. Duties, responsibilities and activities may change from time to time with notice whenever possible, but not guaranteed.
Job Qualifications
We are looking for a candidate to work full time. Normal hours are Monday through Friday 8:30 am to 5:30 pm with increased hours during our peak season: February through April and on a project basis throughout the year. These periods require increasing normal weekly hours, which include weekends.
Benefits
KLR offers a wide range of benefits including: health and dental insurance, paid time-off and a competitive retirement savings plan. We offer tuition assistance, in-house education programs and offer employees opportunities for community involvement.
Come join a firm who has recently been recognized as a "Best Place to Work" for 18 years by the Providence Business Journal and voted as a Top 100 Firm in the country by Accounting Today!
KLR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, genetic information, disability status, protected veteran status, or any other characteristic protected by law.
We are seeking an Information Security (IS) Audit Manager to join our Boston office.
The Information Security (IS) Audit Manager is responsible for supporting the KLR Information Security team in examining, evaluating, and verifying the adequacy of internal controls in client's information technology, information security and IT infrastructure systems. Working with the IS Partner-In-Charge, the IS Audit Manager will be a key contributor in the continued development of the KLR Information Security Group
Job Responsibilities
- Oversee the performance of audit procedures performed by KLR IS staff
- Excellent written, oral and presentation communication skills
- Excellent interpersonal, negotiation and influencing skills
- Manage all aspects of the IS Group including project billing, staff reviews, engagement reviews, engagement budget reviews and approval and engagement workpaper review
- Ability to foster and develop long term relationships with senior client management
- Enhancing the KLR brand through the writing of regular blogs and periodic Webinar presentations
- Integrity, self-motivation, and initiative.
- Demonstrated knowledge of technology and application risk and controls management as a practitioner, including:
- Knowledge of various control frameworks (e.g., TSP 100, NIST, COBIT, etc.)
- Experience in application security controls (design and/or execution)
- Knowledge of Software Development Life Cycle (Agile and Waterfall), control requirements
- Knowledge of vulnerability assessment tools
- Familiarity with network security and performance monitoring tools
- Familiarity with cloud providers including AWS, Azure, etc.
- Familiarity with firewall configurations and understanding of policies and rulesets
- A strong understanding of relational databases (Oracle, SQL, etc.), and data analysis tools
- Knowledge of network and server architectures and information security concepts.
- Some understanding of controls in mainframe or multi-platform networked computing environments.
Other Duties:
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required for this job. Duties, responsibilities and activities may change from time to time with notice whenever possible, but not guaranteed.
Job Qualifications
- Bachelor's degree in computer science, management information systems, accounting, business administration, or related area is required.
- Demonstrated inventory of complementary industry contacts
- Demonstrated ability to develop and close IT audit related business opportunities Minimum 7 years of current IT auditing and/or information technology experience (application security and architecture, system administration, information security, data privacy, network architecture and security) required.
- Previous demonstrated experience in the performance of SOC 1 and SOC 2 assessments and examinations (Type 1 and Type 2)
- Professional qualifications are required or are in process such as CPA, CISA, CISSP or CISM.
We are looking for a candidate to work full time. Normal hours are Monday through Friday 8:30 am to 5:30 pm with increased hours during our peak season: February through April and on a project basis throughout the year. These periods require increasing normal weekly hours, which include weekends.
Benefits
KLR offers a wide range of benefits including: health and dental insurance, paid time-off and a competitive retirement savings plan. We offer tuition assistance, in-house education programs and offer employees opportunities for community involvement.
Come join a firm who has recently been recognized as a "Best Place to Work" for 18 years by the Providence Business Journal and voted as a Top 100 Firm in the country by Accounting Today!
KLR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, genetic information, disability status, protected veteran status, or any other characteristic protected by law.