WHO WE ARE :

Zinnia is simplifying how people buy, sell, and administer insurance products. Combining intuitive enterprise technology solutions and data insights, the Policygenius marketplace, and market-leading products including SmartOffice, AnnuityNet, LifeSpeed, WinFlex, TPP, VitalSales Suite, and Exchange Consulting, Zinnia is redesigning the insurance experience for shoppers, advisors, and insurers alike — and enabling more people to protect their financial futures along the way. Zinnia has over $173.7 billion in assets under administration across 100+ carrier clients, 2500 distributors and partners, and over 2 million policyholders.

WHO YOU ARE:

A seasoned IT auditor who is ready to work with a diverse set of leaders and stakeholders in a forward-thinking organization that is always pushing boundaries. You will take end-to-end ownership and accountability for planning, executing, and reporting on various IT audits and cybersecurity assessments. Our ideal candidate should have a comprehensive background in various types of IT audits, cybersecurity assessments, and relevant IT audit certifications. You are adept at ensuring compliance, enhancing operational efficiency, and mitigating risks through thorough and precise auditing processes.

WHAT YOU’LL DO:

You will be responsible for working with leadership to plan, execute, and deliver outcomes.

  • Audit Planning & Execution:
    o Develop and execute detailed IT audit plans.
    o Conduct comprehensive IT audits across various domains including infrastructure, applications, and data management.
    o Assess compliance with relevant laws, regulations, and internal policies.
  • IT Audits
    o Analyze the organization's innovation capabilities against industry standards and provide insights on new product development.
    o Ensure new systems meet company standards and comply with regulations. Address identified risks to ensure project success.
    o Assess current technology and recommend improvements. Conduct security checks, hardware audits, and backup system audits.
    o Evaluate the innovation process and create risk profiles for current and future projects.
    o Ensure new systems comply with relevant standards and regulations. Identify and assess operational controls.
    o Assess the organization's ability to function under adverse conditions by examining physical security and IT systems.
    o Review controls for servers and networks. Evaluate management and network operations for compliance.
    o Audit the organizational structure for processing information. Improve roles and processes to enhance customer service and value.
  • Cybersecurity Assessments:
    o Perform in-depth cybersecurity assessments to identify vulnerabilities and recommend mitigation strategies.
    o Evaluate the effectiveness of security controls and practices.
    • Risk Management:
    o Identify and assess IT-related risks.
    o Develop actionable recommendations to address identified risks and enhance control environments.
  • Reporting & Documentation:
    o Prepare clear, concise, and well-organized audit reports.
    o Document audit findings, recommendations, and follow-up actions.
  • Collaboration & Communication:
    o Work closely with IT and business units to understand processes and systems.
    o Communicate findings and recommendations to senior management and stakeholders.
    o Provide guidance and support for remediation efforts.
  • Continuous Improvement:
    o Stay current with industry trends, regulatory changes, and best practices in IT auditing and cybersecurity.
    o Contribute to the development and enhancement of the IT audit methodology.

WHAT YOU’LL NEED:

  • Bachelor’s degree in Computer Science, Information Systems or a related field.
  • 3-5 years’ experience in IT auditing, cybersecurity assessments, and risk management.
  • Proven track record of conducting various types of IT audits (e.g., application, infrastructure, and compliance audits).
  • Certified Information Systems Auditor (CISA) required.
  • Additional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC) are highly desirable.
  • Strong understanding of IT audit methodologies, tools, and techniques.
  • In-depth knowledge of cybersecurity frameworks and standards (e.g., NIST, ISO 27001).
  • Excellent analytical, problem-solving, and decision-making skills.
  • Strong written and verbal communication skills.

WHAT’S IN IT FOR YOU?

We’re looking for the best and brightest innovators in the industry to join our team. At Zinnia, you collaborate with smart, creative professionals who are dedicated to delivering cutting-edge technologies, deeper data insights, and enhanced services to transform how insurance is done. Visit our website at www.zinnia.com for more information. Apply by completing the online application on the careers section of our website. We are an Equal Opportunity employer committed to a diverse workforce. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability.

 

#LI-UM1

Apply for this Job

* Required
resume chosen  
Dropbox Google Drive
(File types: pdf, doc, docx, txt, rtf)
Cancel
cover_letter chosen  
Dropbox Google Drive
(File types: pdf, doc, docx, txt, rtf)
Cancel

Enter the verification code sent to to confirm you are not a robot, then submit your application.

This application was flagged as potential bot traffic. To resubmit your application, turn off any VPNs, clear the browser's cache and cookies, or try another browser. If you still can't submit it, contact our support team through the help center.