Offensive Security Engineer
U.S. Bank
IT Audit, Cybersecurity & Risk Manager – HITRUST
Baker Tilly US
full-time
Posted on:
Location Type: Remote
Location: Remote • Illinois, Minnesota, Missouri, Pennsylvania • 🇺🇸 United States
Visit company websiteSalary
💰 $123,840 - $234,770 per year
Job Level
Mid-LevelSenior
Tech Stack
CloudCyber Security
About the role
- Work closely with client executives and management teams to understand their businesses and assist in identifying and managing financial and operational risks within their business processes and systems
- Develop in-depth knowledge of clients’ businesses and industries by having direct client interaction while working on multiple aspects of an engagement
- Think independently and strategically about your clients’ business, systems and risks providing recommendations for business and process improvements based upon knowledge gained relative to the client’s operations, processes and business objectives
- Provide strategic business advice to clients by assisting in the implementation of new processes and controls that address key risks
- Assess, manage and optimize information technology risk across a wide range of areas, including cybersecurity, IT strategy and governance, IT regulatory and compliance requirements, and business continuity and disaster recovery.
- Review clients' processes and controls against industry frameworks, identifying gaps in design and execution, and communicating issues and recommendations to clients
- Draft comprehensive executive summaries and final reports for delivery to the client, documenting and reviewing engagement work papers in accordance with industry-accepted internal audit methodologies
- Act as a valued business advisor, build relationships and communicate effectively with the client to provide superior client service
- Facilitate professional and effective presentations to internal and external audiences
- Continue to develop your knowledge and experience working with a variety of technology environments, platforms, applications and tools/utilities
- Assist with managing client engagement staffing, billings/collections, and ensure client profitability targets are met
- Utilize your entrepreneurial skills to network and build strong relationships internally and externally with clients and the community
- Invest in your professional development individually and through participation in firm wide learning and development programs
- Support the growth and development of team members through the Baker Tilly Care and Teach philosophy, helping associates meet their professional goals
Requirements
- Bachelor’s degree in accounting, finance, or a related program
- CPA, CISA or CISSP designation(s) required
- 5+ year(s) experience with risk advisory, internal/external audit, business process reengineering, and/or internal controls with focus on IT related subject matter (e.g., SOC 1/2 Exams, HITRUST, HIPAA, NIST CSF, NIST 800-53)
- Experience performing HITRUST engagements preferred.
- Open to candidates willing to obtain HITRUST Certification in the future
- Experience with Security+ is preferred
- Experience with Cloud audit experience and certifications is preferred
- Experience as a client serving professional for a consulting firm desired
- Excellent analytical, technical, and problem-solving skills, with strong attention to detail
- Exceptional verbal and written communication, collaboration, and time management skills.
Benefits
- Professional development opportunities
- Team outings that encourage a work-life balance
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
risk advisoryinternal auditexternal auditbusiness process reengineeringinternal controlscybersecurityIT strategyIT governancebusiness continuitydisaster recovery
Soft skills
analytical skillsproblem-solving skillsattention to detailverbal communicationwritten communicationcollaborationtime managementrelationship buildingstrategic thinkingpresentation skills
Certifications
CPACISACISSPHITRUST CertificationSecurity+
