InfoSec GRC Audit Coordinator

Afiniti ,
London, Greater London
More Details

Overview

Job Description

Who are we? Afiniti is the world's leading applied artificial intelligence and advanced analytics provider. Afiniti Enterprise Behavioral Pairing uses artificial intelligence to identify subtle and valuable patterns of human interaction in order to pair individuals on the basis of behavior, leading to more successful interactions and measurable increases in enterprise profitability. Afiniti operates throughout the world, and has measurably driven billions of dollars in incremental value for our clients. Purpose The GRC Audit Coordinator works with the Information Security Department to support all Afiniti organizational units in managing and coordinating efforts related to internal and external audits. Key Responsibilities Plan, coordinate and oversee onsite audits and interviews as required by external auditors. Work with internal groups across the organization and serve as a facilitator to enable timely completion of audits performed by internal and external auditors. Work with auditors and process and control owners as the point person in key audit related activities such as communication of the controls and audit objectives, schedule and attend meetings, track evidence provided to support various audit related activities. Support the tracking of audits, schedule audit follow-up, and central storing of audit reports and artefacts. Attend walkthrough, audit meetings and interviews, testing and reporting meetings for various audit engagements Lead metrics-based tracking to measure effectiveness and efficiency of accomplishing various audit objectives Perform evidence reviews prior to delivering to auditors Work closely with internal teams and provide regular updates on various audit meetings and sessions Track and gather updates on audit issue remediation, assess defined action plans, report status of issues Provide timely and accurate updates to management. This position will also be involved in the documentation and monitoring of related corrective action plans. Help conduct security risk assessments and produce risk treatment plans. Initiate required initiatives to improve compliance processes. Manage security awareness activities throughout the enterprise. Perform related duties as assigned by supervisor. It may be required travel internationally with a very short notice Education & Qualifications A Bachelor's degree from an accredited college or university with major course work in accounting, finance, Information Technology, Information Security, business administration or a closely related field. 3-5 years of experience in governance, risk and compliance (preferred), internal audit or technology risk advisory with a strong understanding of audit processes and engagements Demonstrable experience with IT process, risk and controls framework and IT General Controls (ITGC) Experience with information security and information technology standards such as ISO 27001, PCI DSS, NIST Cybersecurity Framework, GDPR, COBIT, OWASP, ITIL, internal auditing standards, Project management standards, Agile Methodology, and Business Process Management Soft Skills Required Excellent interpersonal, verbal, and written communication skills, including interacting and presenting to senior management and technical subject matter experts Ability to work effectively with multiple levels of management and collaborate to improve promote partnership. Establish and maintain effective working relationships with process and control owners Ability to conduct training sessions on various information security and technology audit topics Ability to develop and write policies, procedures, standards, guidelines, SOPs, checklists, plans, templates, etc. Be a keen, detail-oriented observer. Excellent and effective documentation and word processing skills. Good problem solving and analytical thinking skills. Internation travel is required Salary & Package As well as a competitive base salary dependent on the number of years of experience, we also offer generous stock options, an annual discretionary bonus plus Corporate benefits.

People also viewed