Join Netcracker Technology, a wholly owned subsidiary of NEC Corporation, to work for a forward-looking software company, offering mission-critical solutions to service providers around the globe. Our comprehensive portfolio of software solutions and professional services enables large-scale digital transformations, unlocking the opportunities of the cloud, virtualization and the changing mobile ecosystem. With an unbroken service delivery track record of more than 20 years, our unique combination of technology, people and expertise helps companies transform their networks and enable better experiences for their customers.

Position Summary:

This position can be located in Waltham, MA (HQ) or Cincinnati, OH

This is an exciting new role that will support a variety of audit, compliance and security initiatives! The individual will own the complete life cycle of internal audits, client-requested audits, and compliance reviews. The Senior IT Auditor must have the ability to drive key relationships and collaborate with internal and external stakeholders to identify and manage operational and security risks. This position will also be a key interface with external auditors. 

This is not your typical role with a flat career path of solely testing IT General Controls! This role will have direct influence over ongoing transformation of Netcracker’s security posture.

Responsibilities include:

• Continually monitor the Netcracker IT control environment and identify key risks, related controls and gaps
• Understand and drive adherence to corporate security policies and procedures
• Maintain the RCM and track findings
• Bridge cross-functional conversations to address control enhancement and finding remediation
• Manage internal audits, external audits, and compliance reviews (e.g., SSAE 18, PCI-DSS, ISO)
• Stay abreast of regulation and compliance changes and create awareness for control owners
• Draft management attestations and representation letters
• Conduct periodic risk assessments (e.g., vendor, insider threat, SANS Top 20)
• Act as a liaison between internal and external stakeholders on IT controls and compliance areas
• Assist with privacy compliance projects
• Participate in various risk management initiatives and projects, as assigned

Required Skills & Experience:

• 2-4 years’ experience in Information Security, IT audit and/or IT Risk Management, creating SOC 1/2 and PCI-DSS reports
• 1-3 years’ experience in Big 4 IT Audit experience is highly preferred 
• Working knowledge and understanding of COSO, COBIT, IIA International Professional Practices Framework (IPPF), SSAE 18, PCI-DSS, ISO 27001/27018/22301, NIST 800 standards and frameworks
• CISM, CISSP, CIA or CISA a plus
• Knowledge of relevant applications and technical platforms a plus: Windows Active Directory, UNIX, and Oracle
• Excellent project management skills with the ability to meet tight deadlines
• Strong verbal and written communication skills
• Highly developed interpersonal skills, with emphasis on collaboration, influencing and building strong long-term relationships
• Proactively seeks guidance but can also work independently

Education:

• Bachelor degree in Information Systems Auditing, Computer Science, or related field