As divisions of IAC (Nasdaq: IAC), Ask Applications and the Mosaic Group brings together a unique collection of award-winning technology companies to form one of the world’s largest distributors of utility applications, with its products downloaded more than one million times a day across desktop, browser and mobile devices.
Summary Description:
Ask Applications and the Mosaic Group is seeking an IT Compliance Auditor to join our team and further the development of enterprise security. Reporting to the Director of Information Security, the IT Compliance Auditor will work with business and technical teams to audit compliance of security policy and procedures. This individual will participate in various internal and external audits, prepare, collect, and organize evidence and suggest improvements.
Responsibilities:
- Maintain and ensure consistent application of IT General Controls
- Establish processes to support the controls and ensure that control self-assessments and audits are conducted in a timely manner ensuring completeness and accuracy.
- Drive Internal and External Audits for Sarbanes-Oxley, PCI, and GDPR
- Work with vendors to perform security audits ensuring they meet industry standards
- Understand and assist with Information Security Audits including vulnerability management assessments, software development life cycle reviews, and privacy assessments
Requirements and Skills:
Security Audit:
- Expert in IT audit workflow and process
- Assisting in defining scope and discovery of IT systems
- Assessing business risk associated with IT systems
- Ability to accurately evaluate application of IT controls
- Collaborating with cross-functional departments to complete audit objectives
- Knowledge of ISO 270001/2, SSAE 16, PCI DSS, GDPR, and Sarbanes-Oxley
- Knowledge of NIST, ISO 27001/2, or COBIT frameworks
- Scripting knowledge is a plus
Professional:
- Excellent organizational, communication, and time management skills
- Ability to tactfully communicate and achieve results across team boundaries
- Ability to convey a strong presence and professional image
- Ability to confidently work in a complex technical environment
- Ability to resolve ambiguity and take decisive action
Experience:
- 5+ years IT or Security Audit experience
- Bachelor degree in Information Systems, Information Security or equivalent work experience
- CISA, CCSP, SSCP, or similar certifications are preferred
"We're improving YOUR digital landscape, by intense collaboration"
Spend a few minutes with our amazing people and you'll see why they commute up to Yonkers, NY! This is Ask Applications: unscripted, unfiltered, in all of our quirkiness and Ping Pong-ing intensity. We love what we do, and how we do it. Check out what makes us unique and get a taste of what it's like to build a career here! https://www.youtube.com/watch?v=6LESnUOvl8c