Information Security Analyst with German - IT Audit & Compliance

Job ID 5027Why NessWe know that people are our greatest asset. Our staff’s professionalism, innovation, teamwork, and dedication to excellence have helped us become one of the world’s leading technology companies. It is these qualities that are vital to our continued success. As a Ness employee, you will be working on products and platforms for some of the most innovative software companies in the world. You’ll gain knowledge working alongside other highly skilled professionals that will help accelerate your career progression.You’ll also benefit from an array of advantages like access to trainings and certifications, bonuses, and aids, socializing activities and attractive compensation.Requirements and responsibilities

The IT Internal Audit & Compliance Analyst will conduct internal audits focused on verifying and enhancing the company’s compliance and information technology controls. Help facilitate 3rd party audits and coordinate and work with audit teams, and internal control owners. Conduct timely and effective audit planning, execution, and reporting. Conduct training and process analysis with control owners and operators.  Assist with other audit matters and projects. Provide updates and escalate issues in a timely manner. And other tasks as required.

What you’ll do

1. Act as lead for future audit success by preparing internal control owners for external audits.
2. Help internal control owners scope appropriate evidence samples for external auditors.
3. Establish consistent and sustainable processes for conducting internal audits.  
4. Track and ensure visibility of developing compliance framework standards.
5. Help facilitate and or conduct internal gap assessments and audit readiness assessments.
6. Assess inherent and residual risks, evaluate control designs, develop, and execute audit tests.
7. Document control narratives and walkthroughs.
8. Comfortably assume core audit responsibilities in all audit phases.
9. Participate as a key team member on audit projects, having responsibility for more complex areas.
10. Assist team leaders, managers, senior and staff auditors in accomplishing team objectives.
11. Identify and assess the impact of control deficiencies.
12. Draft audit reports.
13. Present audit findings to management through status updates and closing meetings.
14. Assist in the development of cost-justified, value-added management actions.
15. Effectively handle larger and more challenging workloads on successive assignments.
16. Produce excellent results in audit projects across multiple business areas and for different team leaders.
17. Proficient in the use of automated work papers and other department and company tools.
18. Ensure effective and efficient execution of audits in conformance with professional and department standards, budgets, and timelines.
19. Maintain internal audit competency through ongoing professional development.
20. Participate in the review of co-worker’s work.
21. Always follow the company Code of Ethics and NICE CXone policies and procedures.
22. Communicate in an effective and professional way with customers in and outside of NICE CXone.

What you’ll bring

• High School Diploma
• Common entry-level information security certifications include CompTIA Security+, CISSP Associate, CEH, CISM, CISA, GSEC, CCT, ENSA, SSCP, Cisco Certified CyberOps Associate, or similar.
• 2+ years of experience in information security audits.
• Experience of common compliance frameworks. (BSI C5, GDRP, ISO 27000, Cyber Essentials, PCI-DSS, SOC 2 Type 2, etc...)
• Experience testing compliance controls with control owners.
• Strong written, verbal, and interpersonal communication skills.
• High level of energy, and the desire to work in a fast-changing environment.
• Proficient knowledge of PCs and Servers -- Windows, Linux, and Unix preferred.
• Experience in auditing the security of deployments in AWS and/or Azure environment.

Not checking every single requirement?If this role sounds good to you, even if you don’t meet every single bullet point in the job description, we encourage you to apply anyway. For most of the candidates that applied, we found a role that was a very good fit with their skills.Let’s meet and you may just be the right candidate for one of our roles.At Ness Digital Engineering we are willing to build a work culture that is based on diversification, inclusion, and authenticity.