IT Auditor - Cybersecurity

Job Description

The Audit Staff - Cybersecurity will support the business in achieving operational excellence by assisting in the execution of Internal Audit’s strategy and objectives related to cybersecurity. This position will participate in cybersecurity-related audits to evaluate the status of IT security governance and assessment. This position will work very closely with the IT organization, along with external software and hardware vendors, to coordinate activities and to develop an in-depth knowledge and understanding of the critical IT systems.

• Gain an in-depth knowledge and understanding of critical IT systems, security and technology;
• Monitor and measure IT security risks and compliance efforts;
• Execute cybersecurity audits to assess the design and effectiveness of key technology and/or security controls for critical systems and processes;
• Contribute to the development of the cybersecurity practice area by participating in risk assessment activities, creating audit tools, and building relationships;
• Recommend security improvements by assessing current situation, evaluating trends, and aligning with policies, regulations and best practices;
• Proactively follow-up on agreed audit actions to ensure management delivers their commitments within the agreed timelines;
• Keep Internal Audit and management informed by communicating audit results timely;
• Maintain up-to-date knowledge of security threats, industry trends, countermeasures, security tools, processes, and technologies;
• Prepare clear, organized and complete documentation to support work performed;
• Develop and maintain strong and effective working relationships with key business partners;

Qualifications

• Bachelor’s Degree (Computer Science, Technology, Information Systems or related field)
• 0 to 2 years of experience in IT audit, IT security and/or cybersecurity role
• English fluency required
• CISA, CISSP, CRISC, CEH, and/or CISM certifications are preferred
• Knowledge of industry standards such as the NIST Cybersecurity Framework, NIST 800-53, PCI-DSS, ISO 27001/02, CIS Top 20 Critical Security Controls (formerly SANS), and FFIEC is preferred

• Opportunity for future growth and advancement
• Generous, Award-winning 401(k) plan w/ employer contribution & match
• Half Day Fridays
• Comprehensive benefits package
• Relaxed and contemporary dress code
• Education Assistance program
• and much more…

If you are smart, passionate, innovative, culturally open, curious and collaborative, we’d like to hear from you.

O-I is committed to fostering an inclusive environment that attracts and embraces the brightest minds and creates a culture that welcomes a diversity of ideas and perspectives while encouraging growth and rewarding performance.

Additional Information

O-I is an Equal Opportunity Employer, and does not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application process, or in order to perform the essential functions of a position, please contact O-I at[emailprotected]and let us know the nature of your request and your contact information.