Who We Are
Artmac Soft is a technology consulting and service-oriented IT company dedicated to providing innovative technology solutions and services to customers.
Job Description
Job Title : Senior Cybersecurity Auditor and Risk Manager
Job Type : W2 / C2C/1099
Experience : 8–15 Years
Location : Santa Clara, New Mexico
We are looking for a Senior Cybersecurity Auditor and Risk Manager with a deep understanding of IT controls, risk assessments, and cybersecurity auditing principles. The ideal candidate will be responsible for enhancing our supplier cybersecurity program through rigorous assessments and audits, ensuring the protection and integrity of our data and systems.
Responsibilities
- 6+ years of experience in information security and audit roles with increasing responsibilities.
- Experience working as part of a virtual global team, managing cultural, language, and time zone differences effectively.
- In-depth knowledge of security assessment and audit principles.
- Understanding of networking principles and data protection.
- Ability to identify problems, analyze data, and present conclusions effectively.
- Familiarity with information security frameworks such as ISO 27001/NIST CSF is preferred.
- Certifications such as CISA, CISSP, CISM are preferred.
- Demonstrate strong knowledge in IT controls, risk assessments, and testing of security measures.
- Identify opportunities to continuously innovate and improve the program and value delivered to the organization.
- Ensure successful completion of the annual supplier cybersecurity assessment.
- Perform on-site control validation to ensure the highest impact suppliers have the proper cybersecurity controls in place.
- Independently and proactively plan and perform assigned audit engagements related to security, confidentiality, integrity, information protection, and availability of data.
- Conduct audits and evaluate alignment with the supply cybersecurity control framework.
- Ensure the effectiveness of approved controls and drive risk remediations or changes from previous audits for existing certified suppliers.
- Inform and advise business leaders on suppliers' information security risks.
- Provide subject matter expertise in third-party risk management.
- Post-audit assessment reports and update stakeholders on findings.
Qualification
- Bachelor's degree or equivalent combination of education and experience.
