Staff Auditor - Digital Technology and Cybersecurity

Title: Staff Auditor - Digital Technology & Cybersecurity Location: Cambridge Job Description:

Job Description

Summary The Staff Digital Auditor performs security assessments and information security audits of Third Parties utilizing established IT risk assessment framework and assessment programs. Conducts IT risk assessments to identify appropriate oversight tier and relevant IT controls. Develops and executes assessment approach based on risk assessments. Prepares assessment reports detailing assessor's review of the information security controls and any control gaps. Engages business to re-mediate issues.

Job Description

Roles and Responsibilities In this role, you will:

• Perform 3rd Party information security assessments utilizing established IT risk assessment framework and assessment programs.
• Provide practical recommendations to remediate control gaps
• Prepare present assessment findings to a cross-functional audience.
• Engage business units and Third Parties to remediate control gaps.
• Communicate common information security themes and control gaps identified across the entire Third Party inventory and lifecycle.
• Coordinate across functions such as security, sourcing, legal, and compliance.
• Establish operating rhythm with Business Units to report out on key metrics including status of assessments and issue management.
• Stay current and utilize industry standards and best practices to drive improvements in overall Third Party security posture.

Education Qualification For roles outside USA: Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math) with advanced experience. For roles in USA:Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math) with minimum years of experience6years Desired Characteristics• Strong oral communication, business writing, presentation and facilitation skills

• Internationally recognized information security/IT Audit certification/qualifications such as CISSP, CISA, GSNA, GSAE, or CCNA
• Experience performing IT Audits or Security Assessments of 3rd Party Suppliers in a regulated environment (i.e. Financial Services, Critical Infrastructure)
• Detailed understanding of industry accepted Information Security and IT governance standards (i.e. COBIT, ISO, NIST)
• Awareness or experience with industry regulations (i.e. HIPAA, DFARS, Export control, PCI)
• Proven ability to execute across multiple locations and stakeholder groups
• Ability to work cross functionally
• Ability to influence others effectively across a matrixed organization
• Excellent analytical / technical skills
• Strong oral communication, business writing, presentation and facilitation skills
• Experience managing projects across a complex organization and IT landscape

Note Note: To comply with US immigration and other legal requirements, it is necessary to specify the minimum number of years' experience required for any role based within the USA. For roles outside of the USA, to ensure compliance with applicable legislation, the JDs should focus on the substantive level of experience required for the role and a minimum number of years should NOT be used. This Job Description is intended to provide a high level guide to the role. However, it is not intended to amend or otherwise restrict/expand the duties required from each individual employee as set out in their respective employment contract and/or as otherwise agreed between an employee and their manager. GE Vernova offers a great work environment, professional development, challenging careers, and competitive compensation. GE Vernova is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. GE Vernova will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable). Relocation Assistance Provided: Yes #LI-Remote - This is a remote position For candidates applying to a U.S. based position, the pay range for this position is between $104,500.00 and $174,000.00. The Company pays a geographic differential of 110%, 120% or 130% of salary in certain areas. The specific pay offered may be influenced by a variety of factors, including the candidate’s experience, education, and skill set. Bonus eligibility: discretionary annual bonus. Available benefits include medical, dental, vision, and prescription drug coverage; access to Health Coach from GE Vernova, a 24/7 nurse-based resource; and access to the Employee Assistance Program, providing 24/7 confidential assessment, counseling and referral services. Retirement benefits include the GE Vernova Retirement Savings Plan, a tax-advantaged 401(k) savings opportunity with company matching contributions and company retirement contributions, as well as access to Fidelity resources and financial planning consultants. Other benefits include tuition assistance, adoption assistance, paid parental leave, disability benefits, life insurance, 12 paid holidays, and permissive time off. GE Vernova Inc. or its affiliates (collectively or individually, “GE Vernova”) sponsor certain employee benefit plans or programs GE Vernova reserves the right to terminate, amend, suspend, replace, or modify its benefit plans and programs at any time and for any reason, in its sole discretion. No individual has a vested right to any benefit under a GE Vernova welfare benefit plan or program. This document does not create a contract of employment with any individual. Apply tot his job Apply To this Job