Information Security Sr Mgmt Assoc

Date:  Apr 13, 2024

Buenos Aires, B, AR

Requisition ID:  36487

About Avaya

Businesses are built by the experiences they provide, and every day, millions of those experiences are delivered by Avaya. Organizations trust Avaya to provide innovative solutions for some of their most important ambitions and challenges, giving them the freedom to engage their customers and employees in ways that deliver the greatest business benefits. 
Avaya contact center and communications solutions help power immersive, personalized, and unforgettable customer experiences that drive business momentum. With the freedom to choose their journey, there’s no limit to the experiences Avaya customers can create. 
The richness of Avaya’s global team diversity is our greatest strength, and we are committed to being a workplace where authenticity and individuality are celebrated, and different perspectives are embraced. Learn more at

Job Information

Job Code: 00192760

Job Family: Information Technology

Job Function: Information Security


The Certifications Compliance Auditor is a member of the Avaya Product organization, working with Product Certification Program Managers on projects for industry certifications such as ISO 27001, SOC 2, PCI, HIPAA, and FedRAMP.


The hired individual will assess product installations and support personnel against established controls to ensure compliance, identifying non-conformances and recommending improvements. The individual will plan the audit, including determining the scope and approach; will perform fieldwork using an evidence based approach; will prepare audit reports, writing technical reports that analyze/interpret audit results; will track audit findings to resolution; and will perform follow up reviews.


These independent reviews directly support Avaya’s roadmap to obtain and maintain industry recognized certifications of Avaya product environments. 



What you will do:


•    Manage internal compliance audits following recognized auditing principles and concepts, including creating an audit plan, performing audits, collecting and evaluating evidence, preparing audit reports, and tracking audit findings.
•    Gather audit data; analyzing evidence received against control objectives; identifying findings, especially red flags; and preparing reports that summarize audit results and findings. 
•    Interface with and interview internal management and operating personnel
•    Assist in the development or tailoring of audit testing programs to meet specific business needs



Required qualifications:


•    Exposure to cybersecurity frameworks such as SOC2, ISO 27001, PCI DSS, HITRUST beneficial.
•    Broad technical knowledge preferred, with the ability to perform control reviews on systems, operation, and security procedures and standards.
•    Experience: 3-5 years' experience in cybersecurity, IT audit, and/or IT/cloud operations
•    Good understanding of IT Service Management processes including
-    Vulnerability and Patch Management 
-    Asset Management 
-    Change Management 
-    Access Management
-    Security Logging, Malware, and Antivirus
•    Strong attention to detail, good analytical and statistical skills, as well as communication and multitasking skills. 
•    Good computer skills and experience with MS Office software programs. 
•    Ability to speak, write, and read English without much difficulty required
•    Self-driven and able to work independently


3 - 6 Years of Experience


Bachelor degree or equivalent experience

Preferred Certifications


Avaya is an Equal Opportunity employer and a U.S. Federal Contractor. Our commitment to equality is a core value of Avaya. All qualified applicants and employees receive equal treatment without consideration for race, religion, sex, age, sexual orientation, gender identity, national origin, disability, status as a protected veteran or any other protected characteristic. In general, positions at Avaya require the ability to communicate and use office technology effectively. Physical requirements may vary by assigned work location. This job brief/description is subject to change. Nothing in this job description restricts Avaya right to alter the duties and responsibilities of this position at any time for any reason. You may also review the Avaya Global Privacy Policy (accessible at and applicable Privacy Statement relevant to this job posting (accessible at