Information Security Auditor
- Recruiter
- Rolls-Royce PLC
- Location
- Derby
- Salary
- Neg.
- Posted
- 06 Jan 2017
- Closes
- 20 Jan 2017
- Sectors
- Facilities Management
- Contract Type
- Permanent
- Hours
- Full Time
As an Information Security Auditor, you will play an integral role within the organisation. You will perform technical security audits and work with the Information Assurance team to educate the business on inherent risks and on meaningful hardening and mitigation strategies. This is your chance to develop your skills in a variety of ways, as you take responsibility for network and web-based application audits, physical security assessments, logical security audits, and hands-on technical security evaluations and implementations. You will also have a supportive role in providing cyber security assurance of Rolls-Royce suppliers globally.
Whether it's engaging with our customers or sourcing, manufacturing, testing or monitoring our products once they're in operation, IT is critical to everything we do. Rolls-Royce is one of the most technologically advanced organisations in the world - and our information systems are no exception. By improving information systems (applications and data) and technologies, we support overall business strategy and help teams throughout Rolls-Royce prepare for the future.
Key Accountabilities
- Under the direction of the EMEA Cyber Security Compliance Lead, plan and undertake IT and security audits.
- Independently investigate and provide suggested solutions for complex problems, demonstrating an evaluation of intangible variables and the application of broader knowledge.
- Develop engagement objectives, scope and audit programs (based on an understanding of business conditions and a sound preliminary risk and control assessment) that are in line with direction provided by of the EMEA Cyber Security Compliance Lead.
- Obtain sufficient and appropriate audit evidence to support observations and use business knowledge to identify causes and formulate recommendations to improve risk-management, control, and governance processes in areas such as IT governance and operations, cyber security, continuity of operations and disaster recovery, enterprise architecture, and enterprise security operations.
- Plan and prepare audit communications, including audit reports and recommendations to strengthen internal controls, with input from senior colleagues.
- Effectively adapt communication style and delivery of audit results to various audiences.
- Proactively monitor and acquire knowledge of external trends in IT, security and related audit practices, communicating how they affect Rolls-Royce and identifying opportunities for continuous improvement of audit products and services.
Qualifications
- A degree in business, computer science, or information technology combined with relevant professional experience in information technology security.
- Experience in the fields of information technology, information systems, information security or other relevant experience would be of advantage.
- Experience with Linux OS and MS Windows OS.
- CISSP, CISM, CISA, GIAC, or related information security certifications.
- ISO 27000 auditor qualifications.
At Rolls-Royce, we create integrated power solutions and innovative technologies that keep our customers one step ahead of an ever-changing world.
Create momentum. Join us and you'll develop your skills and expertise to the very highest levels, working in an international environment for a company known the world over for excellence and innovation.
Trusted to deliver excellence.
We are an equal opportunities employer.
This role is subject to Full UK Security Clearance.
Whether it's engaging with our customers or sourcing, manufacturing, testing or monitoring our products once they're in operation, IT is critical to everything we do. Rolls-Royce is one of the most technologically advanced organisations in the world - and our information systems are no exception. By improving information systems (applications and data) and technologies, we support overall business strategy and help teams throughout Rolls-Royce prepare for the future.
Key Accountabilities
- Under the direction of the EMEA Cyber Security Compliance Lead, plan and undertake IT and security audits.
- Independently investigate and provide suggested solutions for complex problems, demonstrating an evaluation of intangible variables and the application of broader knowledge.
- Develop engagement objectives, scope and audit programs (based on an understanding of business conditions and a sound preliminary risk and control assessment) that are in line with direction provided by of the EMEA Cyber Security Compliance Lead.
- Obtain sufficient and appropriate audit evidence to support observations and use business knowledge to identify causes and formulate recommendations to improve risk-management, control, and governance processes in areas such as IT governance and operations, cyber security, continuity of operations and disaster recovery, enterprise architecture, and enterprise security operations.
- Plan and prepare audit communications, including audit reports and recommendations to strengthen internal controls, with input from senior colleagues.
- Effectively adapt communication style and delivery of audit results to various audiences.
- Proactively monitor and acquire knowledge of external trends in IT, security and related audit practices, communicating how they affect Rolls-Royce and identifying opportunities for continuous improvement of audit products and services.
Qualifications
- A degree in business, computer science, or information technology combined with relevant professional experience in information technology security.
- Experience in the fields of information technology, information systems, information security or other relevant experience would be of advantage.
- Experience with Linux OS and MS Windows OS.
- CISSP, CISM, CISA, GIAC, or related information security certifications.
- ISO 27000 auditor qualifications.
At Rolls-Royce, we create integrated power solutions and innovative technologies that keep our customers one step ahead of an ever-changing world.
Create momentum. Join us and you'll develop your skills and expertise to the very highest levels, working in an international environment for a company known the world over for excellence and innovation.
Trusted to deliver excellence.
We are an equal opportunities employer.
This role is subject to Full UK Security Clearance.