Information Security Auditor at Hatch IT

We are redirecting you to the source. If you are not redirected in 3 seconds, please click here.

Information Security Auditor Hatch IT. hatch I.T. is partnering with 10-D/Neovera to find an Information Security Auditor. See details below:. About the role: This unique position allows candidates to use their IT security experience and knowledge to help clients across the country by providing independent, objective assessments of client information security programs, cybersecurity practices, and controls. The 10-D audit program is mature, well-vetted, and follows FFIEC/GLBA guidelines along with best practices. They perform both on-site and remote audits, depending on client wishes. If travel is needed, travel time will vary depending on engagement needs; however, on-site time is 20-40%, which typically breaks down to two days during an engagement, 20-30 weeks annually. . About the company: 10-D Security, a Neovera company, is a national information security and compliance firm specializing in serving financial institutions for almost 20 years. Their services include IT audits, penetration testing, vulnerability assessments, social engineering, BSA/AML audits and model validations, lending and deposit compliance audits, and more. They work with both small and large institutions, delivering best-in-class reports in a timely manner. Their focus is risk-based, resulting in deliverables with actionable findings and direction to speed up remediation. 10-D Security maintains an independent and unbiased approach to security and compliance. Competitive salaries and a full line of employee benefits help them attract and maintain some of their sharpest and brightest professionals in the information security industry. To ensure their staff stays current, 10‐D Security supports employee growth through training reimbursement for relevant certifications and assistance with ongoing CPE obligations.. Responsibilities:. . . Conduct remote and on-site IT audits including policy reviews, general controls reviews, physical security reviews. . Social engineering and physical security testing.. Preparing draft and final report deliverables for clients.. Communicate and work with other members of the engagement team on other types of security assessments such as social engineering, penetration testing, and vulnerability assessments.. Participate in the entire engagement delivery process, from assisting sales with technical questions, through report delivery and follow-up.. Research and stay informed of new technologies, standards, and regulations.. Assist in the development of new processes and procedures to improve testing, auditing, and assessments.. . Required Qualifications:. . . An understanding of information technology, preferably built through experience. The more hands-on experience, the better.. An understanding of the importance of information security and risk management.. Strong communications skills. Good business acumen. . Preferred Qualifications:. . . Senior level IT, IT Director, Information Security Officer, or IT risk management experience.. Experience working with financial institutions.. Certified Information Systems & Security Professional (CISSP) or Certified Information Security Auditor (CISA) certifications.. A bachelor’s degree.. .