In reporting relationship with the Security auditor Manager, the auditor probes the safety and effectiveness of computer systems and their related security components. After conducting a security audit, he issues a detailed report that outlines the effectiveness and integrity of the system, explains any security issues and suggests changes and improvements.
In this mid-level role, you may be required to:
- Plan, execute and lead security audits across an organization
- Inspect and evaluate financial and information systems, management procedures and security controls
- Evaluate the efficiency, effectiveness and compliance of operation processes with corporate security policies and related government regulations
- Develop and administer risk-focused exams for IT systems
- Review or interview personnel to establish security risks and complications
- Execute and properly document the audit process on a variety of computing environments and computer applications
- Assess the exposures resulting from ineffective or missing control practices
- Accurately interpret audit results against defined criteria
- Weigh the relevancy, accuracy and perspective of conclusions against audit evidence
- Provide a written and verbal report of audit findings
- Develop rigorous “best practice” recommendations to improve security on all levels
- Work with management to ensure security recommendations comply with company procedure
- Collaborate with departments to improve security compliance, manage risk and bolster effectiveness
- Travel extensively