Position Posting: I.T. Security Auditor - URGENT
The client is seeking a qualified resource to perform and/or assist with conducting IT security audits of sensitive IT systems
Position Posting Ref # 109 Position Type: I.T. Security Auditor Project/Scope of Work: The client is seeking a qualified resource to perform and/or assist with conducting IT security audits of sensitive IT systems for compliance with COV ITRM IT Security Policy SEC500-02 and ITRM IT Security Standard SEC501-01 on required components (to include but not limited to Facilities Security, IT Asset Management, and IT Contingency Planning). It will be part of this Auditor's job to prioritize/coordinate projects from initial planning to final phases of completion. Candidate will not only be responsible for performing the survey phase, developing an audit program, drafting findings/recommendations, and creating draft reports but will also be responsible for testing of internal controls and assisting with other related (IT Audit Security) projects as needed. Also, the candidate will be responsible for presenting findings/recommendations to management at status meetings. Timelines: Start, January 2010 Approximate duration, 9 months. Scheduled Work Hours: Monday through Friday, 40 hours per week. Location: Petersburg, VA. Work on-site. Ideal candidate will have: - 3 to 5 years of recent IT audit experience, preferably in a government and/or university environment with emphasis in conducting security audits in the areas of risk management, IT contingency planning, information systems security, logical access control, data protection, facilities security, personnel security, threat management, and/or IT asset management.
- Possession of CISA preferred, will consider CIA and CPA credentials (with IT Security exp). *One or more of these certifications is REQUIRED.
- Graduate of an accredited college or university with major studies in auditing and/or information systems.
- Be able to conduct IT security audits from survey through reporting phases with general supervisory guidance, and document findings.
- Familiarity with the Commonwealth of Virginia VITA security policies and standards (ITRM Policy SEC500-02: IT Information Security Policy; ITRM Standard SEC501-01: IT Information Security Standard; and SEC502-00: IT Security Audit Standard).
- Knowledge, understanding, and experience with COBIT framework.
- Familiarity with pertinent industry information technology guidelines and standards (e.g., NIST, ISO, GTAG).
- Candidate must have strong oral/written communication and presentation skills.
Summary | Possession of CISA preferred, will consider CIA and CPA credentials | Required | | Graduate of an accredited college or university with major studies | Required | | 3 to 5 years of recent IT audit exp (government or university setting pref) | Required | | Conduct IT security audits from survey through reporting phases | Required | | Working knowledge w/ ITRM SEC500-02: IT Security Policy | Desired | | Working knowledge w/ ITRM SEC501-01: IT Security Standard | Desired | | Working knowledge w/ ITRM SEC502-00: IT Security Audit Standard | Desired | | Knowledge, understanding, and experience with COBIT framework | Highly desired | | Familiarity with pertinent industry IT guidelines (NIST, ISO, GTAG) | Highly desired | | Audit report writing and presentation experience | Required |
Criminal Background Check: National criminal background check is required by the client. Contact Information: If you are interested in this position please contact: John Wheatley, President
International Consulting Services LLC
jwheatley@icsllconline.com
(804) 347 3325
www.icsllconline.com
Certified Virginia Small Business |
