SOC2 & CMMC Internal Auditor Liaison at Victory

You will work with our engineers, support representatives, and external auditors to:

Perform complex, senior-level auditing and advisory work to develop a new audit program and processes for SOC2 and Department of Defense (DOD) Cybersecurity Maturity Model Certification (CMMC) / FedRAMP.
Conduct research, benchmarking, examining and reviewing records & financial statements.
Perform data & risk analyses, identify appropriate controls, assess business processes, and evaluate management processes.
Manage the development of an appropriate audit scope, selection of an external auditor, and successful completion of audits annually.
Continuously collect operational documentation and data samples in order to close process gaps or to document accepted risk before a gap becomes a finding.
Maintain relationships with our external auditors to anticipate changes to audit focuses and prepare the organization for them.
Educate the organization about audit requirements, risk analysis and controls, and assist us with integrating best practices into our existing operational framework.
Identify and document corrective actions that need to be taken based on audit reports.
Respond to client requests for documentation of our processes and audit reports.
Understand and follow changes to CUECs from our partners and vendors.

Requirements

You have experience with:

Auditing in accordance with generally accepted auditing standards and risk-based internal auditing.
Basic information technology controls in a cloud environment.
Analyzing, interpreting, and summarizing data, policies, and procedures for effective performance of audit work.
Establishing and maintaining trust-based relationships with internal and external stakeholders.

You should...

Have advanced writing and communication skills.
Be willing to apply your skills across our small organization, from the low level (e.g. writing process documentation) to high level (e.g. developing organizational audit plans).
Help us maintain the culture and values of our organization.

It would be a plus if you have...

Some experience with DOD cybersecurity requirements and contracts, e.g. NIST 800-171.
Some experience with FedRAMP requirements.

Life at Victory

Victory is the world's leading Hypernetic Solutions consultancy, delivering business evolution through technology, data-driven process, and cross-disciplinary experience to create transformative business solutions.

Digital transformation advances businesses operations, processes, competencies and models to fully leverage the changes and opportunities of a mix of digital technologies and their accelerating impact in a strategic and prioritized way, with present and future shifts in mind.

Practice Areas: Engineering & Infrastructure - Executive Leadership Deploying Solutions for Complex Challenges. Marketing Technology & Optimization - Technology and Process Solutions Leading an Increased Bottom Line. Applied Technology - Emerging Technology Leadership from Strategy through Execution. Syndicate - Early Stage Organizational and Product Focused Leadership. Karma - Accelerated Project Execution and Scale.

Globally deployed from Austin, Texas

Thrive Here & What We Value

Innovative design and layout for client websites

Fast-paced environment with agile/scrum development

Professional development, staying up-to-date with emerging technologies

Clean and artful web design emphasis

Usability and simplicity in website development

Creative problem solving

Strong team collaboration and communication

Flexible work arrangements (onsite/remote, 40hrs/week)

Data-driven decision making with a focus on quality assurance and data protection

Job Functions• Perform complex auditing and advisory work• Conduct research and analysis• Manage audit scope and selection of external auditors• Identify corrective actions and document findings• Educate organization on audit requirements and best practices• Respond to client requests for documentation

Job Requirements• Experience with auditing in accordance with generally accepted auditing standards• Basic information technology controls in a cloud environment• Analyzing, interpreting, and summarizing data, policies, and procedures for effective performance of audit work• Establishing and maintaining trustbased relationships with internal and external stakeholders

Skills• Auditing in accordance with generally accepted auditing standards• Riskbased internal auditing• Basic information technology controls in a cloud environment• Analyzing, interpreting, and summarizing data, policies, and procedures• Establishing and maintaining trustbased relationships

Soft Skills• Advanced writing and communication skills• Ability to apply skills across different levels (low to high)• Willingness to adapt to changing audit focuses and requirements

SOC2 & CMMC Internal Auditor Liaison

Requirements

Life at Victory

Your tracker settings