IT Auditor

 In

Website Application Development

Reference Code: 4637

Job Tittle: IT Auditor

Location: DEARBORN, MI {48120} (Remote till July 2021)

Duration: 12+ Months of contract

 

Position Description:

  • Position to assist IT Site Management and business teams understand policy and compliance objectives which help mitigate risk to our business.
  • The resource will engage with auditors, both internal and external, assisting them in risk identification.
  • Day-to-day tasks will be coupled with special projects around shaping the organizations we serve, as well as, internal process improvement initiatives.
  • Security and Controls Professional responsible ensuring IT Controls are appropriate based on risk for North America manufacturing sites and their associated applications and infrastructure.
  • Supporting the validation of the associated application/infrastructure documentation accurately depicts the IT controls in compliance with the ISO-based Information Security Policy (ISP).

 

Skills Required:

  • Consulting on Application and Infrastructure Control Framework (i.e. Component Assessments, Detailed Risk Assessments, SCRP evidence, etc.) .
  • Provide guidance on appropriateness of compensating controls .
  • Consulting on Security Control Process to IT Site Management and their business partners. Supporting communications with Operations and General Audit Office (GAO) to confirm controls information.
  • Supporting communications with Suppliers in identifying and documenting IT controls.
  • Assist with the identification of Operations-Identified Comments and associated risks.
  • Provide metrics and status to management regarding compliance with information security requirements .
  • Provide support for Supplier On Site Assessments .
  • Ideal candidate will be someone with IT security background, not provisioning experience more audit and compliance focused with exposure to several areas of IT Security and an understanding of the security concepts.
  • Application/System support with broad experience covering change management, access controls, etc.
  • This should have given them an understanding of the necessary concepts but may lack formal hands-on security training.
  • Technical Skills Required: . Knowledge of IT Policy and compensating controls.
  • Excellent verbal and written communication. .
  • Customer Relationship Management skills .
  •  Self-Starter who can work in ambiguous situations and drive to a solution. .
  • 1-3 years of Security and Controls, IT audit, or equivalent experience (security controls are technical/administrative safeguards put in place to help avoid risk)

 

Experience Preferred:

  • Infrastructure Engineering and/or Support .
  • 1-3 years of risk assessment, 3rd party risk assessment, IT policy experience .
  • 2-4 years of application and systems support with broad experience covering change management, access controls and how new technology (apps and infra) are implemented and/or decommissioned in an enterprise environment. .
  • Project Management . Knowledge of Application Development Lifecycle . Familiar with Ford processes, procedures, and organization.
  •  Strong organizational skills; able to advance multiple work streams concurrently . Not afraid to ask questions with a willingness to self-train and volunteer

 

Education Required:

  • Bachelor”s degree in a Technical Discipline or relevant

 

 

Upload your CV/resume or any other relevant file. Max. file size: 300 MB.

Recent Posts