Information Security Audit Admin

Our expanding its Information Security Team to meet changing business and regulatory requirements. As a member of a small team, this role will have direct interaction with executives and highly technical individuals, and will include ownership of strategic initiatives, as well as hands-on implementations.Define access control requirements to meet regulatory and business requirements for separation and segregationContinuously assess access in applications, databases and systems
o Determine current access (using Powershell, SQL or equivalents) to report on access
o Create reports (using Excel or equivalent)
o Provide reports to management and (internal /external) auditors substantiating control
o Identify access inconsistent with regulatory and business requirementsDetermine process for continuous assessment and testing of BCP/DR plans
o Identify gap between current BCP/DR capabilities and desired stateCreate framework for control of data among vendors providing technical and business servicesHands-on implementation of access changes in production systems
o Active Directory/ AZMAN administration


Job Requirements:Five years experience in Information Security Role- Access Control (IAM) or Internal Audit role in a regulated company (e.g. RIA, Broker-Dealer), specializing in access management. Or, external auditor of IAM in a regulated companyHands-on access control experience (e.g. Active Directory, AZMAN, or enterprise class administration system)Industry Certification (e.g. CISM, CISA, CISSP, ITIL, DRI)High proficiency in MS Office Tools (Excel Macro's, PowerPoint, Visio, MS Project)Proficiency in data retrieval automation (Powershell, SQL)
Bachelor's degree in a technical field, or equivalent experience