Shuvel is hiring a
Security Program Strategy Controls Assurance Analyst

Summary

The job is for an Asset Based Testing Analyst who will plan, scope, execute, and report IT and Information Security control tests. They will work in an Agile environment and communicate with various stakeholders. The required qualifications include experience in control testing, working with different levels of staff, management, and third parties, and specific Information Security certifications.

Requirements

• Experience in control testing to include experience in some of the three lines of defense (Audit, ERM, First Line areas)
• Experience in working with all levels of staff, management, stakeholders, and third parties
• CISSP, CISA, CRISC, CCSP or other Information Security certifications

Responsibilities

• Planning & Scoping of Asset Based Assessments to include development of communications, risk & control matrices, scope documents and other supporting information
• Perform walk-throughs with business partners identifying actual versus expected controls
• Create test strategies to test actual controls
• Document all work performed to meet the IIA reperformance standard
• Document issues and final reports
• Present to leadership results of assessments
• Any other duties as assigned to support the program