Deskripsi Pekerjaan
Join Aprio's Information Assurance Services team within Risk Advisory and Assurance Services (RAAS) and gain unparalleled experience in protecting organizational assets. This senior-level position offers the opportunity to lead critical IT risk assessments, evaluate security controls, and ensure compliance with industry standards. You'll work with diverse clients across various sectors, implementing robust cybersecurity frameworks and driving continuous improvement in security posture. The role requires deep technical expertise coupled with strategic thinking to address evolving cyber threats. Collaborate with cross-functional teams to deliver comprehensive assurance services, including penetration testing, vulnerability assessments, and security audits. Ideal candidates will thrive in a dynamic environment where they can mentor junior staff while developing innovative solutions to complex security challenges. Aprio provides a platform for professional growth through continuous learning and exposure to cutting-edge technologies.
Tanggung Jawab
- Lead IT risk assessments and security control evaluations for enterprise clients
- Develop and implement information security policies aligned with ISO 27001, NIST, and COBIT frameworks
- Conduct penetration testing and vulnerability assessments to identify security gaps
- Prepare detailed audit reports with actionable recommendations for senior management
- Manage client relationships and communicate complex security concepts to non-technical stakeholders
- Mentor junior associates and contribute to knowledge-sharing initiatives within the practice
- Stay current with emerging cybersecurity threats and regulatory compliance requirements
Kualifikasi
- Bachelor's degree in Computer Science, Information Security, or related field
- Minimum 5 years of experience in IT auditing, cybersecurity, or risk management
- Professional certifications (CISA, CISSP, CISM) or equivalent practical experience
- Proficiency in security assessment tools and vulnerability scanners
- Strong understanding of regulatory frameworks (GDPR, HIPAA, PCI-DSS)
- Excellent analytical and problem-solving abilities
- Exceptional communication skills with proven client management experience