Responsibilities:

• Auditing of complex IT and Security environments and serving as the staff on audits. 
• Coordinating walkthrough meetings and evidence collection for external auditors for SOC 2, SOX, and other audits
• Performing risk assessments and audits with limited supervision from management.
• Managing various control frameworks within AuditBoard 
• Capturing and analyzing information to identify key risks and corresponding controls.
• Systematically testing and evaluating controls to verify efficiency and effectiveness of operation, reliability of information and compliance with applicable laws and regulations.
• Communicating findings and recommendations to management.
• Following-up and implementing corrective actions. 
• Write Policies and procedures for internal controls 
• Deliver training to other members of the company on policies and procedures. 
• Deliver security trainings to the business and run phishing campaigns

Skills & Qualifications:

• Bachelor’s degree in Accounting, Finance, Computer Science, or relevant quantitative field.
• Recent experience in IT regulation and compliance standards such as SOC 2 NIST, ISO 27001, SOX-404, and HIPAA.
• 1+ years’ experience in a Big 4 IT audit or compliance role.
• Understanding of IT methodologies, such as software development lifecycle and operations.
• Ability to understand complex technical environments.
• Experience designing/testing/implementing internal controls and reviewing business processes. 
• Excellent oral, written and presentation communication skills.

Nice to Have:

• Recognized professional certification(s) (CISA, CISSP, CPA, CIA, CFE)
• Experience working for a company in the technology or healthcare industry.
• Experience with NetSuite, Workday, Blackline, JP Morgan, AuditBoard, Knowbe4, JIRA, is a plus