IT Auditor /Government & risk cyber security compliance

Akkodis is seeking a IT Auditor /Government & risk cyber security compliance consultant for a Contract job with a client in Mclean/Richmond VA . Ideally looking for applicants with a solid background in the financial services industry .

Desired Skill Sets

Location: Richmond, VA or McLean, VA hybrid

Rate Range: $55-58/hour on w2 /C2C; The rate may be negotiable based on experience, education, geographic location, and other factors.

Must have

• Experience developing and implementing a continuous controls monitoring program.
• Testing tools used in control testing
• Experience with regulatory requirements and control frameworks (e.g., SOX, COSO, COBIT)
• Experience with Cloud will be added advantage
• CISA, CISM, Security , CISSP, CEH, CCSP, or AWS Certification
• Knowledge of building out reporting.
• Should be an expert on Excel /V look
• Audit experience would be beneficial.
• Evidence gathering understanding what evidence to gather and setting requirements.
• Executing audits, controls testing, and controls documentation.

Nice to have

• Audit certs
• Cybersecurity certs (not required and not as important as the auditing experience)

Must have

• Skills Required
• Bachelors Degree
• 5 years of experience in technology audit, compliance, or governance & risk management
• 2 years of experience with cloud environments
• 2 years of experience in an agile or scrum environment
• Problem-solving and decision-making skills, with the ability to analyze complex issues and develop practical solutions.
• Demonstrated ability to manage multiple projects simultaneously, prioritize tasks, and meet deadlines in a fast-paced environment.
• Some expertise within controls testing and controls documentation.
• Knowledge of building out reporting.
• Audit experience would be beneficial.
• Evidence gathering understanding what evidence to gather and setting requirements.
• Executing audits, controls testing, and controls documentation.

Project:

Role is surrounding a continuous controls monitoring program that they're trying to stand up within cybersecurity. They're looking to build out what will be many audits of controls (understanding how the controls operate, reviewing controls, setting requirements, etc.) and establishing where the data resides and how to build out requirements for the data analyst.

Issues with candidates so far - lots of folks with tech compliance where it seems like they understand how to gather evidence for controls but don't understand how to set the requirements for evidence gathering for controls. They have step 2 (gathering evidence) but not step 1 (setting requirements on how to gather evidence, etc.)

Nice to have

Audit certs

Cybersecurity certs (not required and not as important as the auditing experience)

RESPONSIBILITIES

Assist in the development of a controls monitoring strategy to set standards and best practices for control execution, monitoring, alerting, and reporting.

Deliverable: Build requirements and draft an approved standard for controls monitoring

Develop and implement monitoring procedures and reporting to track control performance, identify gaps/deficiencies, remediate deficiencies within an SLA, and recommend areas for enhancement.

Deliverable: Develop monitoring procedures and artifacts for in scope controls

Collaborate with cross-functional teams to ensure alignment of control design and execution with controls monitoring requirements.

Deliverable: Align control designs and execution to the monitoring procedure

Based on monitoring procedures, conduct thorough assessments to evaluate the effectiveness of controls on a periodic basis to ensure execution, accuracy, and quality

Deliverable: Execute the created controls monitoring procedures

Enable reporting to provide timely updates to management on control status, issues, and remediation efforts

Deliverable: Production Alize reporting of control execution monitoring

Actively seek and report on opportunities to strengthen monitoring and reporting processes via automation

Deliverable: Define opportunities for automated monitoring and reporting

Basic Qualifications for Support Personnel

If you are interested in this role, then please click APPLY NOW. For other opportunities available at Akkodis, or any questions, feel free to contact me at 3039422431 /soma.chakraborty@akkodisgroup.com.

Equal Opportunity Employer/Veterans/Disabled

Benefit offerings available for our associates include medical, dental, vision, life insurance, short-term disability, additional voluntary benefits, an EAP program, commuter benefits, and a 401K plan. Our benefit offerings provide employees the flexibility to choose the type of coverage that meets their individual needs. In addition, our associates may be eligible for paid leave including Paid Sick Leave or any other paid leave required by Federal, State, or local law, as well as Holiday pay where applicable. Disclaimer: These benefit offerings do not apply to client-recruited jobs and jobs that are direct hires to a client.

To read our Candidate Privacy Information Statement, which explains how we will use your information, please visit https://www.akkodis.com/en/privacy-policy.

The Company will consider qualified applicants with arrest and conviction records in accordance with federal, state, and local laws and/or security clearance requirements, including, as applicable:

· The California Fair Chance Act

· Los Angeles City Fair Chance Ordinance

· Los Angeles County Fair Chance Ordinance for Employers

· San Francisco Fair Chance Ordinance