Information Security Auditor
7 days ago
**Information Security Auditor**
Anticipated Starting Salary Range: $58,000 - $70,000
Starting Salary Commensurate with Qualifications and Experience
The State Corporation Commission’s (SCC) Health Benefit Exchange (HBE) division seeks an Information Security Auditor interested in a rewarding public service career. This position offers the unique opportunity to join Virginia’s recently transitioned state-based exchange and will join a growing professional team. The Information Security Auditor will work under the direction of the HBE Information Security Manager to ensure internal and external compliance with security and privacy controls. Additional responsibilities of the Information Security Auditor position are below:
- Conduct internal assessments to evaluate compliance with information security and privacy policies, procedures, regulations, and agreements
- Conduct external audits on HBE partners and vendors to evaluate compliance with privacy and security requirements
- Monitor regulatory changes and evaluate impacts to compliance on security and privacy policies - Evaluate the effectiveness of security and privacy controls being assessed
- Coordinate and support independent 3rd party assessments and audits
- Review and update security and privacy control documentation to ensure it is accurate, up to date, and adheres to legal and regulatory requirements
- Develop and present compliance findings from audits to HBE leadership and prepare remediation reports
- Conduct system access reviews to ensure adherence to the principle of least privilege
- Coordinate with vendors, federal agencies, partners, and SCC internal teams regarding security and privacy compliance activities
- Support the implementation of data security and privacy protection policies and procedures
- Contribute to continuous improvement efforts
- Perform related work as required
The Information Security Auditor position offers a hybrid work schedule (generally 3 days of telework and 2 days in-office per week) as well as a variety of professional development and training opportunities.
**Preferred Qualifications**
- Professional experience in auditing and assessing privacy and security controls and performing system access reviews
- Familiarity with NIST 800-53 and/or other security frameworks
- Bachelor's degree in Information Security, Information Technology, Computer Science, Legal or related field is preferred, but not required
- Ability to develop policy and procedure documentation
- Ability to research and remain up to date on regulatory compliance
- Ability to work independently and as part of a team
- Strong interpersonal skills and initiative
- Ability to establish and maintain effective working relationships with SCC staff, industry personnel, auditors, and HBE partners and vendors
- Excellent verbal and written communication skills
- Strong problem-solving, analytical, and organizational skills
- Ability to manage multiple priorities in a fast-paced environment
- Experience with information security regarding the health insurance industry and/or the Affordable Care Act is a plus
**SCC Information**
The SCC offers rewarding, impactful work; flexible telework options and work-life balance; and professional development opportunities. The SCC fosters a high-performing workforce with a commitment to diversity and inclusion, collaboration, and alignment with the SCC’s mission and strategic goals. Core benefits provided to SCC employees include competitive health and life insurance programs, pre-tax spending accounts, leave programs, and paid holidays. Employees participate in a state retirement plan with options for tax-deferred retirement savings including employer matching. The state also funds a short and long-term disability program.
The SCC regulates various companies and industries in Virginia; therefore, to avoid any conflict, employees are required to sign a Conflict of Interest Form and must dispose of any stock they hold in a regulated company or dispose of any licenses or certificates they hold in any industry regulated by the SCC unless otherwise permitted. Employees also shall report employment of household members by a regulated company.
The information you submit must clearly demonstrate your experience and qualifications as they relate to this position. Interview consideration is based on the information submitted online.
This position will be classified in the SCC Salary Structure as a Grade P-9 and will be exempt from the provisions of the Fair Labor Standards Act (FLSA).
**How to Apply**
Pay: $58,000.00 - $70,000.00 per year
**Benefits**:
- 401(k)
- 401(k) matching
- Dental insurance
- Employee assistance program
- Employee discount
- Flexible schedule
- Flexible spending account
- Health insurance
- Health savings account
- Life insurance
- Paid time off
- Parental leave
- Professional development assistance
- Referral program
- Retirement plan
- Tuition reimbursement
- Vision insurance
Sche
-
Junior IT Security Auditor
1 week ago
Richmond, United States Commonwealth of Virginia Full timeJob Duties The Virginia IT Agency (VITA) helps ensure the Commonwealth of Virginia provides a safe, secure technology environment enabling state agencies to accomplish their respective missions. The Commonwealth Security & Risk Management (CSRM) Directorate of VITA oversees the technology environment and in doing so, offers significant benefits to...
-
Richmond, United States Applied Information Sciences Full timeYou will need to login before you can apply for a job. Senior Information Security Analyst with Security Clearance As a Senior Information Security Analyst, you are responsible for implementing effective cybersecurity measures, monitoring networks for vulnerabilities, and responding to security breaches. What You'll Be Doing Identifying and assessing the...
-
IT Auditor
3 weeks ago
Richmond, United States Innovative Management & Technology Services Full timeCompany Overview: Join a fast-growing company highly experienced in cyber security, cloud computing, virtualization, big data analytics, and project management! IMTS offers competitive compensation, excellent benefits including tuition reimbursement and employer-contributed 401K, and referral bonuses. We work with the best customers on-site at top...
-
IT Auditor
2 weeks ago
Richmond, United States Innovative Management & Technology Services Full timeCompany Overview: Join a fast-growing company highly experienced in cyber security, cloud computing, virtualization, big data analytics, and project management! IMTS offers competitive compensation, excellent benefits including tuition reimbursement and employer-contributed 401K, and referral bonuses. We work with the best customers on-site at top...
-
IT Auditor
3 weeks ago
Richmond, United States Innovative Management & Technology Services Full timeJob DescriptionJob DescriptionCompany Overview:Join a fast-growing company highly experienced in cyber security, cloud computing, virtualization, big data analytics, and project management! IMTS offers competitive compensation, excellent benefits including tuition reimbursement and employer-contributed 401K, and referral bonuses. We work with the best...
-
IT Auditor 4
2 weeks ago
Richmond, United States Serigor Inc Full timeJob Title: IT Auditor 4 (Hybrid) Location: Richmond, VA Duration: 12+ Months Job Description: As an IT Auditor specializing in Data Migration with the client, you will play a crucial role in ensuring the accuracy, integrity, and security of data migration processes for the client Data Migration program. You will collaborate with cross-functional teams,...
-
IT Auditor 4
2 months ago
Richmond, United States Serigor Inc. Full timeJob DescriptionJob DescriptionJob Title: IT Auditor 4 (Hybrid)Location: Richmond, VADuration: 12+ MonthsJob Description:As an IT Auditor specializing in Data Migration with the client, you will play a crucial role in ensuring the accuracy, integrity, and security of data migration processes for the client Data Migration program. You will collaborate with...
-
IT Auditor 4
3 weeks ago
Richmond, United States Serigor Inc Full timeJob Title: IT Auditor 4 (Hybrid) Location: Richmond, VA Duration: 12+ Months Job Description: As an IT Auditor specializing in Data Migration with the client, you will play a crucial role in ensuring the accuracy, integrity, and security of data migration processes for the client Data Migration program. You will collaborate with cross-functional teams,...
-
IT Auditor 4
2 months ago
Richmond, United States Serigor Inc Full timeJob Title: IT Auditor 4 (Hybrid)Location: Richmond, VADuration:12+ MonthsJob Description:As an IT Auditor specializing in Data Migration with the client, you will play a crucial role in ensuring the accuracy, integrity, and security of data migration processes for the client Data Migration program. You will collaborate with cross-functional teams, including...
-
IT Auditor 4
2 weeks ago
Richmond, United States Serigor Inc. Full timeJob DescriptionJob DescriptionJob Title: IT Auditor 4 (Hybrid)Location: Richmond, VADuration: 12+ MonthsJob Description:As an IT Auditor specializing in Data Migration with the client, you will play a crucial role in ensuring the accuracy, integrity, and security of data migration processes for the client Data Migration program. You will collaborate with...
-
Internal Auditor
7 days ago
Richmond, United States The Ladders Full timeOverview We're looking for experienced Internal Auditor to complete the timely performance of, assistance with, and support of a variety of internal audit functions within WorkSafeBC. Reporting to an internal audit manager, the internal auditor is responsible for the timely performance of, assistance with, and support of a variety of internal audit...
-
Information Security Analyst
1 month ago
Richmond, United States Kinsale Insurance Full timeAre you passionate about information security and technology risk management? Kinsale Insurance has an opening for an Information Security Analyst who will report to the Manager of Information Security and help improve the information security posture of the organization. Create, maintain, communicate, enhance, and monitor security policy, drive information...
-
Information Security Analyst
1 month ago
Richmond, United States Kinsale Insurance Company Full timeAre you passionate about information security and technology risk management? Kinsale Insurance has an opening for an Information Security Analyst who will report to the Manager of Information Security and help improve the information security posture of the organization. Create, maintain, communicate, enhance, and monitor security policy, drive information...
-
Information Security Analyst
2 weeks ago
Richmond, United States Kinsale Insurance Company Full timeAre you passionate about information security and technology risk management? Kinsale Insurance has an opening for an Information Security Analyst who will report to the Manager of Information Security and help improve the information security posture of the organization. Create, maintain, communicate, enhance, and monitor security policy, drive information...
-
Internal Auditor
4 weeks ago
Richmond, United States James River Holdings Corporation Full timeAt James River Group, we are committed to providing a stable and rewarding work environment supported by our Core Values and Guiding Principles: Integrity, Accountability, Innovation, Customer Service, Communication, and Teamwork. James River Group is a subsidiary of James River Group Holdings, Ltd. We are proud of our recent national recognition as a 2021,...
-
Information Security Manager
3 weeks ago
Richmond, United States Fusion Technology Full timeFusion Technology is supporting a U.S. Government customer to provide support for onsite incident response to civilian Government agencies and critical asset owners who experience cyber-attacks, providing immediate investigation and resolution. Contract personnel perform investigations to characterize of the severity of breaches, develop mitigation plans,...
-
Information Security Analyst
7 days ago
Richmond, United States Softinc Full time**Must be a USC or GC holder** **No 3rd party** **Must work on a W2** SOFT's client, located in Richmond, VA is looking for an Info Security Analyst for a long term contract assignment. This is a hybrid position. Position Overview: The Security Control Assessor plays an integral role in ensuring that an organization’s information systems are evaluated...
-
Information Security Analyst
4 weeks ago
Richmond, United States Open Systems Technologies Full timeA financial firm is looking for an Information Security Analyst to join their team in Richmond, VA. Pay: $55-65/hr w2Responsibilities: 1) Perform complex analysis of business issues utilizing established methodology and tools within information security areas. 2) Work with the clients and other resources to assess current capabilities, identify customer...
-
Premium Auditor
3 weeks ago
Richmond, United States Afirm Solutions Full timeJob DescriptionJob DescriptionEntrepreneurs Wanted! Are you tired of working for someone else? Have you thought about building a business for yourself? If you answered yes to either question – Welcome! We are excited to introduce Afirm to you! Our field auditors come from all walks of life and various backgrounds. They are inquisitive, driven...
-
Premium Auditor
3 weeks ago
Richmond, United States Afirm Full timeEntrepreneurs Wanted! Are you tired of working for someone else? Have you thought about building a business for yourself? If you answered yes to either question - Welcome! We are excited to introduce Afirm to you! Our field auditors come from all walks of life and various backgrounds. They are inquisitive, driven & self-directed. They love numbers and...
