Lead Technical Auditor
Who We Are:
In today’s work environment, employees use a myriad of devices to access IT applications and data over multiple networks to stay productive, wherever and however they work. Ivanti elevates and secures Everywhere Work so that people and organizations can thrive.
While our headquarters is in the U.S., half of our employees and customers are outside the country. We have 36 offices in 23 nations, with significant offices in London, Frankfurt, Paris, Sydney, Shanghai, Singapore, and other major cities around the world.
Ivanti’s mission is to be a global technology leader enabling organizations to elevate Everywhere Work, automating tasks that discover, manage, secure, and service all their IT assets. Through diverse and inclusive hiring, decision-making, and commitment to our employees and partners, we will continue to build and deliver world-class solutions for our customers.
Our Culture - Everywhere Work Centered Around You
At Ivanti, our success begins with our people. This is why we embrace Everywhere Work across the globe, where Ivantians and our customers are thriving. We believe in a healthy work-life blend and act on it by fostering a culture where all perspectives are heard, respected, and valued. Through Ivanti’s Centered Around You approach, our employees benefit from programs focused on their professional development and career growth.
We align through our core values by locking arms in collaboration, being champions for our customers, focusing on the outcomes that matter most and fighting the good fight against cyber-attacks. Are you ready to join us on the journey to elevate Everywhere Work?
Why We Need you!
As part of the Compliance and Audit team, you will lead the execution of multiple functions and support daily activities of the program, included but not limited to: development, implementation, documentation/maintenance of policies and procedures, monitoring program compliance, investigation and tracking of incidents and breaches and insuring compliance with federal laws.
Critical priorities include:
Serve as the primary lead and point of contact for all FedRAMP related matters
Work closely with Information Security, Product, Software Development, Operations, as well as external vendors and third-party assessment vendors (3PAOs) to ensure FedRAMP, Common Criteria, and FIPS 140 audit requirements are met
Developing and maintaining documentation for Certification and Accreditation (C&A), Security Assessment Plans (SAP), Security Assessment Reports (SAR), System Security Plans (SSP)
Provide status updates on Federal audit program to key stakeholders
Maintain Federal program certification by successfully completing Federal audits (FedRAMP, Common Criteria, FIPS 140, IRAP, and ISMAP)
The primary focus of this position in Information Security is to collaborate with internal stakeholders and product engineering teams to ensure compliance with audit controls and requirements.
What You Will Be Doing:
Successfully manage and lead an audit program ensuring compliance with regulatory requirements, compliance standards, internal policies, and mandates
Lead and manage a team of auditors, assigning tasks, setting priorities, and providing guidance through the audit process
Continuously evaluate and enhance audit methodologies, processes, and tools to ensure effectiveness and efficiency
Support the development of security policies, training material, and other core documents
Coordinate and manage onsite assessments with external stakeholders
Communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means
Advise authorizing officials, chief information officers, senior information security leads on a range of audit related topics
Work independently and have the ability to prioritize conflicting demands from multiple business clients in an extremely fast-paced environment
Work across departments and business units to implement organization’s audit principles and programs
To Be Successful in The Role, You Will Have:
Writing technical documentation demonstrating knowledge of Cloud and Security concepts
Frameworks such as: NIST SP 800 Series, FISMA, ISO 15408, and ISO27001
Leveraging technical and program management skills to plan, track, collaborate and report on regulated program deliverables
Tracking and driving remediation of control deficiencies and gaps identified internally and externally
Previous professional experience in a similar role with a focus on Federal audits (FedRAMP, FIPS 140, Common Criteria, and ISMAP) (4+ years preferred)
Familiarity with security frameworks such as NIST and ISO
Experience with communicating effectively and efficiently across diverse teams, through verbal and written exchanges
Project management experience, leading and organizing a team to complete a project within a specific time frame and budget
Confident in delegating tasks and consistent in tracking and monitoring progress
Industry certifications preferred (PMP, CISSP, CISM, CGEIT)
At Ivanti, we are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates without regard to race, color, religion, sex, pregnancy (including childbirth, lactation and related medical conditions), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by applicable law. Ivanti believes that diversity and inclusion among our teammates is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool.