Information Security Auditor
This is a professional position that supports the coverage of Planet's core internal Information Security and Cybersecurity controls.
The incumbent will be responsible for planning and executing 3rd party audits as well as regulatory compliance audits.
Key Responsibilities:
* Timely execution and completion of assigned audit projects, coordinating the timing and scheduling of audit activity to achieve completion of the project audit plan.
* Examine in-scope controls, evaluate the design and operational effectiveness, determine exposure to risk, and develop remediation strategies.
* Work independently in the development of project scope, performing testing procedures, and preparing internal audit reports.
* Conduct efficient and effective audit procedures.
* Respond to security questionnaires submitted by customers and partners in collaboration with the bid team.
* Draft, review and execute RPF responses submitted by key vendors.
* Perform regular audit testing and provide recommendations.
* Review, evaluate, and test application controls.
* Provide recommendations and guidance on identified security and control risks.
* Develop a strong understanding of business and system processes.
* Comfortable in working in a virtual environment with limited in-person face-to-face interaction.
Required Skills and Qualifications:
* 3+ years of work experience as an Information Security Auditor preferably working in Financial/Payments sector.
* Great awareness of cybersecurity trends. Knowledge of IT general controls and internal control areas is required, as is the comprehension of internal auditing standards, PCI DSS, P2PE and PIN, NIST, ISO 27001, SOC1 Type2, SOC2 Type1 and risk-assessment practices.
* A clear understanding of IT audit methodologies.
* Ability to work under pressure in a fast-paced environment.
* Strong attention to detail with an analytical mind and outstanding problem-solving skills.
* Excellent communication skills, both verbal and written.
* Strong interpersonal skills and ability to develop and maintain relationships with client organizations.
* It is considered a plus to hold or have held one or more of the following general/internal certifications: QSA, PCIP, ISA.
Why Choose This Opportunity?
This organization is an equal opportunity employer where diversity is valued, and all employment is decided based on qualifications, merit, and business need.
Come and grow your career in a dynamic technology market, with a company that delivers connected commerce solutions.
Reasonable accommodations may be made in order to allow for an individual to perform the essential functions of this role successfully.
What We Offer:
* A hybrid work model, with three days a week in the office.
Equal Employment Opportunities:
This organization is committed to providing equal opportunities to all individuals regardless of their background, race, gender, age, disability, or any other personal characteristic.
We strive to create an inclusive work environment that values diversity, promotes equity, and provides equal access to opportunities.