Cyber Assurance Specialist, Internal Audit
Waukesha
GE HealthCare
GE HealthCare provides digital infrastructure, data analytics & decision support tools helps in diagnosis, treatment and monitoring of patientsGE HealthCare is a leading global medical technology and digital solutions innovator. Our mission is to improve lives in the moments that matter. Unlock your ambition, turn ideas into world-changing realities, and join an organization where every voice makes a difference, and every difference builds a healthier world.Job Description
Roles and Responsibilities
With oversight from Managers and other senior team members, perform cyber audit work and test internal controls by reviewing and documenting relevant evidence to conclude on the design and operational effectiveness of controls and the overall control environment.
Conduct in-depth inquiry and data analysis to understand cyber and technology operations, assess risk based on industry risk profile, and supports the development of project scope for cross-functional process areas, leveraging business knowledge and expertise of others.
Support comprehensive cybersecurity audits and assessments of an organization's IT infrastructure to identify vulnerabilities, weaknesses, and gaps in their security controls.
Collaborate with colleagues across the globe, adaptability and strong understanding of global business practices are key attributes for success for this position.
Participate in meetings with key client contacts and stakeholders to review key concepts, gaps or issues with risk management and control design elements, support, and conclusions.
Adapt testing approach based on risks identified.
Assess documentation, processes, methods, policies, costs, and other factors to determine if assigned scope areas are operating in accordance with established and relevant controls and in a way that adequately mitigates identified risks.
Prepares clear and well-organized audit work documentation within an automated workflow that clearly documents root cause, work performed, investigation summaries, and recommendations.
Present initial audit observations to the IA leadership and audit stakeholders, as required.
Embrace an equitable and inclusive environment where people can bring their full selves to work and unlock their greatest potential and contributions to the team.
Stay abreast of new and emerging cybersecurity regulations & trends that impacts the risk landscape and rapidly adjust audit plan or procedures accordingly.
Qualifications
Bachelor's degree in Accounting, Finance, Business Administration or "STEM" (Science, Technology, Engineering or Mathematics) Majors or related
2 years of relevant internal audit or equivalent experience
Ability to travel internationally and domestically approximately 15-20%.
Desired Characteristics
CIA, CISA, CISSP, CISM or other professional cybersecurity certification is a plus.
Familiarity with industry standards/framework, such as MITRE, OWASP Top-10, NIST 800-115, NIST 800-53, NIST 800-171, NIST Privacy Framework, CSA CCM, ISO 27001, ITIL v3, COBIT and FAIR is desirable.
Understanding of IT Operational Functions and concepts including IAM, Asset Management, Cybersecurity, Data Privacy
Audit/risk management experience or exposure is preferred.
General knowledge of legal, regulatory, and compliance requirements.
Excellent listening, verbal, written, and presentation communication skills.
Lean Process orientation: Passion to help improve operations continuously.
Experience with data analytics is a plus.
Strong project management and organization skills.
Problem solving skills that demonstrate logical and analytical thought processes.
Know how to use technology and data to get things done.
Ability to flex personal style according to the context of a situation to drive engagement with all stakeholders.
We expect all employees to live and breathe our behaviors: to act with humility and build trust; lead with transparency; deliver with focus, and drive ownership –always with unyielding integrity.
Our total rewards are designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you’d expect from an organization with global strength and scale, and you’ll be surrounded by career opportunities in a culture that fosters care, collaboration, and support.
#LI-BR3
#LI-Onsite
Additional InformationGE HealthCare offers a great work environment, professional development, challenging careers, and competitive compensation. GE HealthCare is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
GE HealthCare will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable).
While GE HealthCare does not currently require U.S. employees to be vaccinated against COVID-19, some GE HealthCare customers have vaccination mandates that may apply to certain GE HealthCare employees.
Relocation Assistance Provided: No
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Audits CIA CISA CISM CISSP COBIT Compliance Data Analytics Finance IAM ISO 27001 ITIL IT infrastructure Mathematics NIST NIST 800-53 OWASP Privacy Risk assessment Risk management STEM Travel Vulnerabilities
Perks/benefits: Career development Competitive pay Transparency
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.