Posted on: April 28, 2021

Senior Information Security Auditor

Cincinnati, USA
Netcracker Netcracker Careers logo

Senior Information Security Auditor

Are you someone who enjoys working with next generation technology, interacting with best in class global teams, and working with the largest digital transformations in the world?  This opportunity will combine them all while offering a competitive salary and accelerated career growth opportunities.

Join Netcracker Technology to work for a forward-looking software company, offering mission-critical solutions to service providers around the globe. Our comprehensive portfolio of software solutions and professional services enables large-scale digital transformations, unlocking the opportunities of the cloud, analytics, virtualization and 5G mobile networks. With an unbroken service delivery track record of more than 25 years, our unique combination of technology, people and expertise helps companies transform their networks and enable better experiences for their customers.

Position Summary:

This is an exciting new role that will support a variety of audit, compliance and security initiatives!  The individual will own the complete life cycle of internal audits, customer requested audits, and compliance reviews.  The Senior Information Security (IS) Auditor must have the ability to drive key relationships and collaborate with internal and external stakeholders to identify and manage operational and security risks.  This position will also be a key interface with external auditors. 

This candidate must have familiarity with SSAE 18, PCI-DSS and ISO standards.  This role will have direct influence over ongoing transformation of Netcracker’s security posture.

This position can be located in Cincinnati, OH or remote anywhere within the USA.

Role and Responsibilities:

  • Continually monitor the Netcracker IT control environment and identify key risks, related controls and gaps
  • Understand and drive adherence to corporate security policies and procedures
  • Maintain the RCM and track findings
  • Bridge cross-functional conversations to address control enhancement and finding remediation
  • Manage internal audits, external audits, and compliance reviews (e.g., SSAE 18, PCI-DSS, ISO)
  • Stay abreast of regulation and compliance changes and create awareness for control owners
  • Draft management attestations and representation letters
  • Conduct periodic risk assessments (e.g., vendor, insider threat, SANS Top 20)
  • Act as a liaison between internal and external stakeholders on IT controls and compliance areas
  • Assist with privacy compliance projects
  • Participate in various risk management initiatives and projects, as assigned

Required Experience:

  • Minimum of 3 years’ experience working as an IT / IS Auditor (previous Big 4 experience preferred).
  • 1-3 years’ in Information Security, IT audit and/or IT Risk Management experience a plus
  • CISM, CISSP, CIA or CISA a plus
  • Working knowledge and understanding of COSO, COBIT, IIA International Professional Practices Framework (IPPF), SSAE 18, PCI-DSS, ISO 27001/27018/22301, NIST 800 standards and frameworks
  • Knowledge of relevant applications and technical platforms a plus: Windows Active Directory, UNIX, and Oracle
  • Excellent project management skills with the ability to meet tight deadlines
  • Strong verbal and written communication skills
  • Highly developed interpersonal skills, with emphasis on collaboration, influencing and building strong long-term relationships
  • Proactively seeks guidance but can also work independently

Education:

  • Bachelor degree in Information Systems Auditing, Computer Science, or related field

#LI-BT1

Apply for this job

Please submit a detailed CV and fill out all the fields in the form.

U.S. Equal Opportunity Employment Information (Completion is voluntary)

Individuals seeking employment at this company are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. You are being given the opportunity to provide the following information in order to help us comply with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.

Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

U.S. Equal Opportunity Employment Information (Completion is voluntary)

Individuals seeking employment at this company are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. You are being given the opportunity to provide the following information in order to help us comply with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.

Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

U.S. Equal Opportunity Employment Information (Completion is voluntary)

Individuals seeking employment at this company are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. You are being given the opportunity to provide the following information in order to help us comply with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.

Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression
Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

1Section 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

Application consent for Netcracker

By clicking the “I Accept” button you expressly make the following representations and warranties and give your consents as described below:

Netcracker collects your personal data for the purposes of managing Netcracker’s recruitment related activities as well as for organizational planning purposes globally. Consequently, Netcracker may use your personal data in relation to the evaluation and selection of applicants including for example setting up and conducting interviews and tests, evaluating and assessing the results thereto and as is otherwise needed in the recruitment processes including the final recruitment.

Netcracker does not disclose your personal data to unauthorized third parties. However, as a global corporation consisting of multiple affiliated companies in various countries, Netcracker has international sites and Netcracker uses resources located throughout the world. Netcracker may from time to time also use third parties to act on Netcracker’s behalf. You agree to the fact that to the extent necessary your personal data may be transferred and/or disclosed to any company within Netcracker group of companies as well as to third parties acting on Netcracker’s behalf, including also transfers to servers and databases outside the country where you provided Netcracker with your personal data. Such transfers may include for example transfers and/or disclosures outside the European Economic Area and in the United States of America.

By registering your information, you confirm that you agree to the processing of your personal data by Netcracker as described in the Privacy Notice.

We help you focus on the most important step you'll take. Your next one.

Take your strategy, your operations, and your business forward today.