Job Title Director, CyberSecurity Audit
Requisition Number
7396
Location Palo Alto, CA-046
Position Type Full-time
Job Type Regular
Education Required Bachelor's Degree
Experience Required More than 10 years
About US SSL is a leading provider of commercial satellites and spacecraft systems, with broad expertise to support satellite operators and innovative space related missions. The company designs and manufactures spacecraft for services such as direct-to-home television, video content distribution, broadband internet, mobile communications, and Earth observation. Based in the heart of the Silicon Valley, SSL's advanced product line also includes state-of-the art small satellites, and sophisticated robotics and automation solutions for remote operations. A career with SSL could shape your future in ways that you've never imagined.
Due to the nature of our business, SSL has export control and security sensitivities that require all of our employees to be a United States Citizen, Permanent Resident of the United States, an Asylee, or a Refugee. SSL is an Equal Opportunity Employer.
Job Description The Internal Audit (IA) organization is responsible for delivering high quality objective and independent assurance over the Company's key business risks to the Audit Committee and Management in a cost effective way and consistent with Professional Standards. Reflecting the Company's core value of continuous improvement, the function is in the process of moving toward wider coverage of operational risks, exploring more efficient audit approaches and industry best practices where appropriate.
The Director of CyberSecurity Audit will have specific responsibility for defining, assessing and executing the CyberSecurity plan within the IT function in accordance with professional best practices, and will assist the Vice President of IA and the leadership team in driving function-wide transformation programs and the strategic direction for the team. This person will stay closely aligned with IT Security management in order to understand and add value to our business.
PRINCIPAL ACCOUNTABILITIES / DUTIES:
- Define & execute the IT & Cyber audit plans, based on thorough understanding of our business and risk exposures and incorporating an integrated approach with Operational audit
- Perform effective Cyber risk assessments. Define Cyber risk-based audit programs and execute on the same.
- Contribute to the overall risk assessment performed for IT specific considerations
- Deliver high quality, efficient and timely audit work in accordance with the Internal Audit charter, IIA standards and professional best practices
- Add value to the business through great communication and alignment with IT senior management
- Work closely with IT and Cyber leadership of the company to define scoping, planning and execution of work
- Work with external auditors and help IA leadership manage expectations
- Drive efficiencies in our approach to "do more with less"
- Drive creation of actions to remediate deficiencies and risk mitigation plan with stakeholders
- Drive department transformation programs which may include implementing risk based auditing approaches, streamlining processes and documentation, implementing data analytics & continuous audit, improving indicators & performance metrics, developing audit training & development, enhancing stakeholder & Audit Committee reporting and department budgeting processes.
- Drive the professional development, including benchmarking, training, certification and engagement, like in IIA/ISC2/RSA/ISACA etc forums
Requirements - 10 years of core IT Security Audit experience
- Exposure to IA in an international manufacturing environment (any A&D experience would be a bonus)
- Deep understanding of IT Security posturing, threat/impact analysis, IT General Controls, core IT processes, controls, platforms and systems
- In depth experience in areas like (Security Audits and/or Ops) -- IP Protection, DLP, Encryption, Network, Firewall, SEIM, DMZ, Extranet etc.
- Having the CISSP (or CISM, CIA) certification would be great
- Great people management skills: able to motivate, lead and performance manage individuals in a diverse team
- Effective communicator, relationship builder and a manager of expectations
- Excellent knowledge of Cyber audit best practices, tools/techniques and emerging trends
Location: Westminster, CO or Palo Alto, CA