ZAG Zyklotron AG
IT Auditor/Compliance Engineer, Senior Manager
ZAG Zyklotron AG, Tampa, Florida, us, 33646
IT Auditor/Compliance Engineer, Senior Manager
06/12/2024
Posted on June 12, 2024THE OPPORTUNITY:
*Open to remote candidates residing in the United States*The IT Audit Senior Manager/Compliance Engineer will have a global responsibility in the organization to maintain and approve the processes and procedures needed to meet current and future client needs across the suite of solutions offered by VelocityEHS. The individual with work with teams across all of VelocityEHS’s operations to ensure that appropriate processes are documented with adequate controls and segregation of duties to meet or exceed industry standards such as SSAE18 SOC 2 Type II. Understanding of IT and business processes and the ability to communicate effectively cross functionally are critical to the role.The IT Audit Senior Manager/Compliance Engineer will need to have experience interfacing with external audit staff to complete timely external examinations and report generation. Additionally, they will be responsible for an on-going, continuous audit cycle with dynamic improvements to aid business stakeholders and clients efficiently and effectively meet objectives.Primary Duties and Responsibilities:Manage controls and documentation for SSAE 18 SOC 2 Type II examinations for VelocityEHS solutions.Manage an internal audit plan that includes monthly, quarterly and semi-annual reviews of key control activities to maintain on-going complianceMaintain relevant IT policies and guidelines inline with current industry standards (e.g. NIST 800-53, ISO 27001/2, CIS)Work collaboratively on Vendor Risk Management assessmentsWork with cross-functional teams on Due Diligence and Request for Proposal questionnairesDocument processes and procedures used by teams in meeting compliance objectivesProject manage remediation efforts for areas of opportunity identified during examinationsProvide and maintain cross-functional mapping to additional standards such as C-Star, SIG/SIG-lite, FedRAMP, GDPR and others as requiredMinimum Skills and Qualifications:5+ years of SOC 2 audit experienceDemonstrated experience with at least one of the following: FedRAMP, ISO 27000 series, CIS Critical Security ControlsMust be self-motivated but also work as part of a team with great interpersonal skillsStrong analytical skills and excellent written and oral communicationsExperience in a cloud oriented Software as a Services environmentKnowledge of information privacy controls around GDPRAbility to manage Vendor Risk Management program including on going assessments for existing vendorsAbility to manage Software and Solution VendorsPreferred Skills and Qualifications:Knowledge of change management (ITIL)Knowledge of IT Systems and Networking conceptsAbility to read contracts and government regulationsPrivacy or Audit CertificationIT audit or compliance software experience (e.g. TrustArc, OneTrust)We welcome and encourage diversity in the workplace. VelocityEHS is an Equal Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to age, race, color, national or ethnic origin, religion, sex, sexual orientation, gender identity or expression, marital status, family status, veteran status, Indigenous/Native American status, or disability. Applicants with disabilities can request accessible formats, communication supports, or other accessibility assistance by contacting hrpolicy@ehs.comHeadhunters and recruitment agencies may not submit resumes/CVs through this website or directly to managers. VelocityEHS does not accept unsolicited headhunters and agency resumes. VelocityEHS will not pay fees to any third-party agency or company that does not have a signed agreement with VelocityEHS.
#J-18808-Ljbffr
06/12/2024
Posted on June 12, 2024THE OPPORTUNITY:
*Open to remote candidates residing in the United States*The IT Audit Senior Manager/Compliance Engineer will have a global responsibility in the organization to maintain and approve the processes and procedures needed to meet current and future client needs across the suite of solutions offered by VelocityEHS. The individual with work with teams across all of VelocityEHS’s operations to ensure that appropriate processes are documented with adequate controls and segregation of duties to meet or exceed industry standards such as SSAE18 SOC 2 Type II. Understanding of IT and business processes and the ability to communicate effectively cross functionally are critical to the role.The IT Audit Senior Manager/Compliance Engineer will need to have experience interfacing with external audit staff to complete timely external examinations and report generation. Additionally, they will be responsible for an on-going, continuous audit cycle with dynamic improvements to aid business stakeholders and clients efficiently and effectively meet objectives.Primary Duties and Responsibilities:Manage controls and documentation for SSAE 18 SOC 2 Type II examinations for VelocityEHS solutions.Manage an internal audit plan that includes monthly, quarterly and semi-annual reviews of key control activities to maintain on-going complianceMaintain relevant IT policies and guidelines inline with current industry standards (e.g. NIST 800-53, ISO 27001/2, CIS)Work collaboratively on Vendor Risk Management assessmentsWork with cross-functional teams on Due Diligence and Request for Proposal questionnairesDocument processes and procedures used by teams in meeting compliance objectivesProject manage remediation efforts for areas of opportunity identified during examinationsProvide and maintain cross-functional mapping to additional standards such as C-Star, SIG/SIG-lite, FedRAMP, GDPR and others as requiredMinimum Skills and Qualifications:5+ years of SOC 2 audit experienceDemonstrated experience with at least one of the following: FedRAMP, ISO 27000 series, CIS Critical Security ControlsMust be self-motivated but also work as part of a team with great interpersonal skillsStrong analytical skills and excellent written and oral communicationsExperience in a cloud oriented Software as a Services environmentKnowledge of information privacy controls around GDPRAbility to manage Vendor Risk Management program including on going assessments for existing vendorsAbility to manage Software and Solution VendorsPreferred Skills and Qualifications:Knowledge of change management (ITIL)Knowledge of IT Systems and Networking conceptsAbility to read contracts and government regulationsPrivacy or Audit CertificationIT audit or compliance software experience (e.g. TrustArc, OneTrust)We welcome and encourage diversity in the workplace. VelocityEHS is an Equal Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to age, race, color, national or ethnic origin, religion, sex, sexual orientation, gender identity or expression, marital status, family status, veteran status, Indigenous/Native American status, or disability. Applicants with disabilities can request accessible formats, communication supports, or other accessibility assistance by contacting hrpolicy@ehs.comHeadhunters and recruitment agencies may not submit resumes/CVs through this website or directly to managers. VelocityEHS does not accept unsolicited headhunters and agency resumes. VelocityEHS will not pay fees to any third-party agency or company that does not have a signed agreement with VelocityEHS.
#J-18808-Ljbffr