Our client, a dynamic financial services institution, is seeking a diligent and experienced Senior Information Security Auditor to join their esteemed team in **Las Vegas, Nevada, US**. This critical role will involve assessing and validating the effectiveness of information security controls across the organization's IT infrastructure and business processes. You will play a key part in ensuring compliance with regulatory requirements and mitigating cybersecurity risks.
This hybrid role combines in-office collaboration with remote flexibility, allowing you to contribute effectively while maintaining work-life balance. You will work closely with IT, compliance, and business unit leaders to conduct comprehensive audits and provide actionable recommendations for security enhancements.
Key Responsibilities:
Plan, execute, and lead information security audits and assessments according to established methodologies and frameworks (e.g., NIST, ISO 27001, SOX, PCI DSS). Evaluate the design and operational effectiveness of security controls related to access management, network security, data protection, incident response, and vulnerability management. Identify security vulnerabilities, policy exceptions, and areas of non-compliance, documenting findings clearly and concisely. Develop detailed audit reports, including executive summaries, findings, risk ratings, and practical remediation recommendations. Collaborate with IT and business stakeholders to track the implementation of remediation plans and verify their effectiveness. Stay current with evolving cybersecurity threats, regulatory changes, and industry best practices. Contribute to the development and refinement of internal audit procedures and security policies. Perform special investigations and ad-hoc security assessments as required. Present audit findings and recommendations to management and relevant committees. Mentor junior auditors and support the overall growth of the internal audit function.
Qualifications:
Bachelor's degree in Information Technology, Computer Science, Cybersecurity, Accounting, or a related field. Minimum of 5-7 years of experience in information security, IT auditing, or IT risk management. Proven experience conducting security audits and assessments in accordance with recognized frameworks. Strong understanding of IT general controls, cybersecurity principles, and common security threats. Familiarity with regulatory compliance requirements relevant to the financial services industry (e.g., GLBA, SOX, GDPR). Professional certifications such as Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or Certified Public Accountant (CPA) are highly preferred. Excellent analytical, critical thinking, and problem-solving skills. Strong written and verbal communication skills, with the ability to clearly articulate complex technical issues. Ability to work independently, manage multiple audit engagements simultaneously, and meet deadlines. Experience with GRC tools is a plus.
Join a team dedicated to safeguarding sensitive information and ensuring the highest standards of security and compliance.
Apply tot his job
Apply To this Job