and meets the requirements of the AICPA Statement on Standards for Attestation Engagements 18 (SSAE 18)/International Standard on Assurance Engagements No. 3402 (ISAE3402) System and Organization Controls (SOC) 1 Type 2 and SSAE18 System and Organization Controls (SOC) 2 Type 2. Contribute to the More ❯
Control framework and policy development Engage with customers to design control frameworks to ensure assurance needs and expectations are met for various certifications (e.g., ISAE, SOC). Engage with auditors to develop, mature and evaluate the control framework to ensure objectives are met and risk is managed effectively. Engage … across risk areas, leveraging an understanding of risk and regulations. About you: You have proven experience in successfully implementing and evaluating control frameworks (e.g., ISAE3402, ISAE 3000 and SOC 2) and/or managing and executing technology audits. You have a Bachelor's degree in computer More ❯
NIST CSF, NIST 800-53, CIS, and COBIT frameworks. Conduct risk assessments and audits to ensure compliance with regulatory standards and best practices, including ISAE3402 and SOC2. Author, review, and maintain IT security policies and procedures to support compliance and security goals. Manage corrective action plans for identified security risks … COBIT). In-depth knowledge of DORA requirements, and risk management for ICT assets, including crypto platforms. Strong understanding of auditing frameworks such as ISAE3402 and SOC2. Demonstrated experience in authoring and maintaining policies and procedures related to information security. Experience managing corrective action plans and overseeing security risk management More ❯
controls that can be deployed to manage third-party security risks. - Knowledge of key assurance certifications and assurance reports used in Information Security (e.g. ISAE3402, ISO27001, SOC2 reports etc.). - A good understanding of Data Protection regulations and the broader third-party management lifecycle will be highly advantageous. - Experience of More ❯
