Information Security Auditor


Premium Job From Rolls Royce

Recruiter

Rolls Royce

Listed on

6th January 2017

Location

Derby

Salary/Rate

Negotiable

Salary Notes

Negotiable

Type

Permanent

This job has now expired please search on the home page to find live IT Jobs.

As an Information Security Auditor, you will play an integral role within the organisation. You will perform technical security audits and work with the Information Assurance team to educate the business on inherent risks and on meaningful hardening and mitigation strategies. This is your chance to develop your skills in a variety of ways, as you take responsibility for network and web-based application audits, physical security assessments, logical security audits, and hands-on technical security evaluations and implementations. You will also have a supportive role in providing cyber security assurance of Rolls-Royce suppliers globally.

Whether it's engaging with our customers or sourcing, manufacturing, testing or monitoring our products once they're in operation, IT is critical to everything we do. Rolls-Royce is one of the most technologically advanced organisations in the world - and our information systems are no exception. By improving information systems (applications and data) and technologies, we support overall business strategy and help teams throughout Rolls-Royce prepare for the future.

Key Accountabilities

* Under the direction of the EMEA Cyber Security Compliance Lead, plan and undertake IT and security audits.

* Independently investigate and provide suggested solutions for complex problems, demonstrating an evaluation of intangible variables and the application of broader knowledge.

* Develop engagement objectives, scope and audit programs (based on an understanding of business conditions and a sound preliminary risk and control assessment) that are in line with direction provided by of the EMEA Cyber Security Compliance Lead.

* Obtain sufficient and appropriate audit evidence to support observations and use business knowledge to identify causes and formulate recommendations to improve risk-management, control, and governance processes in areas such as IT governance and operations, cyber security, continuity of operations and disaster recovery, enterprise architecture, and enterprise security operations.

* Plan and prepare audit communications, including audit reports and recommendations to strengthen internal controls, with input from senior colleagues.

* Effectively adapt communication style and delivery of audit results to various audiences.

* Proactively monitor and acquire knowledge of external trends in IT, security and related audit practices, communicating how they affect Rolls-Royce and identifying opportunities for continuous improvement of audit products and services.

Qualifications

* A degree in business, computer science, or information technology combined with relevant professional experience in information technology security.

* Experience in the fields of information technology, information systems, information security or other relevant experience would be of advantage.

* Experience with Linux OS and MS Windows OS.

* CISSP, CISM, CISA, GIAC, or related information security certifications.

* ISO 27000 auditor qualifications.

At Rolls-Royce, we create integrated power solutions and innovative technologies that keep our customers one step ahead of an ever-changing world.

Create momentum. Join us and you'll develop your skills and expertise to the very highest levels, working in an international environment for a company known the world over for excellence and innovation.

Trusted to deliver excellence.

We are an equal opportunities employer.

This role is subject to Full UK Security Clearance.

You are currently using an outdated browser.

Please consider using a modern browser such as one listed below: