Information Security Sr Mgmt Assoc
Buenos Aires, B, AR
About Avaya
Businesses are built by the experiences they provide, and every day, millions of those experiences are delivered by Avaya. Organizations trust Avaya to provide innovative solutions for some of their most important ambitions and challenges, giving them the freedom to engage their customers and employees in ways that deliver the greatest business benefits.
Avaya contact center and communications solutions help power immersive, personalized, and unforgettable customer experiences that drive business momentum. With the freedom to choose their journey, there’s no limit to the experiences Avaya customers can create.
The richness of Avaya’s global team diversity is our greatest strength, and we are committed to being a workplace where authenticity and individuality are celebrated, and different perspectives are embraced. Learn more at www.avaya.com.
Job Information
Job Code: 00192760
Job Family: Information Technology
Job Function: Information Security
ABOUT THE OPPORTUNITY
The Certifications Compliance Auditor is a member of the Avaya Product organization, working with Product Certification Program Managers on projects for industry certifications such as ISO 27001, SOC 2, PCI, HIPAA, and FedRAMP.
The hired individual will assess product installations and support personnel against established controls to ensure compliance, identifying non-conformances and recommending improvements. The individual will plan the audit, including determining the scope and approach; will perform fieldwork using an evidence based approach; will prepare audit reports, writing technical reports that analyze/interpret audit results; will track audit findings to resolution; and will perform follow up reviews.
These independent reviews directly support Avaya’s roadmap to obtain and maintain industry recognized certifications of Avaya product environments.
ABOUT YOU
What you will do:
• Manage internal compliance audits following recognized auditing principles and concepts, including creating an audit plan, performing audits, collecting and evaluating evidence, preparing audit reports, and tracking audit findings.
• Gather audit data; analyzing evidence received against control objectives; identifying findings, especially red flags; and preparing reports that summarize audit results and findings.
• Interface with and interview internal management and operating personnel
• Assist in the development or tailoring of audit testing programs to meet specific business needs
Required qualifications:
• Exposure to cybersecurity frameworks such as SOC2, ISO 27001, PCI DSS, HITRUST beneficial.
• Broad technical knowledge preferred, with the ability to perform control reviews on systems, operation, and security procedures and standards.
• Experience: 3-5 years' experience in cybersecurity, IT audit, and/or IT/cloud operations
• Good understanding of IT Service Management processes including
- Vulnerability and Patch Management
- Asset Management
- Change Management
- Access Management
- Security Logging, Malware, and Antivirus
• Strong attention to detail, good analytical and statistical skills, as well as communication and multitasking skills.
• Good computer skills and experience with MS Office software programs.
• Ability to speak, write, and read English without much difficulty required
• Self-driven and able to work independently
Experience
Education
Preferred Certifications
Footer