Technical Audit Analyst

Company: BlueOrange Compliance
Location: Columbus
Posted on: November 22, 2021

Job Description:

Remote Work Option!



About us

BlueOrange Compliance is a national provider of HIPAA security, cyber security and HITRUST assessments, guidance, and remediation to healthcare clients and business associates. We are looking for a motivated individual to complement our innovative and fast-growing team!



About this Position



This position offers the option for remote work. In this role, you would be responsible for developing and executing detailed audit plans that identify potential areas of security risk. You will perform the audit and then work with the client engagement team on remediation strategies while providing value added solutions for a client's security framework. While most of the duties are performed remotely, up to 25% travel is required.



Required Skills



1-2 years of experience in the audit and compliance field

Familiarity with Sox, HITRUST, Information Systems Audit, NIST or similar audit methodologies

A strong understanding of business risks, controls, and testing methodologies as they relate to security auditing

Ability to present both findings and recommendations to various levels of business leadership (both technical and C-level non-technical)

Ability to develop and maintain positive relationships with client partners and internal team



Any of the following are a plus:



2 - 5 years' experience in the information security field

HITRUST External Assessor and QA certification (CCSFP, CHQP)

Familiarity with major cloud service providers, including Amazon Web Services (AWS), Google Cloud Platform (GCP), and Microsoft Azure

Familiarity with security and privacy compliance regulations (HITRUST, HIPAA, PCI, NERC CIP, SOX)

Computer security certification (CISSP, CISM, GIAC, Security+, CISA)

Technical certification (Microsoft, Cisco, etc.)

Familiarity with industry standards and frameworks (COBIT, ISO, NIST)



Essential Duties



Develop and execute detailed audit plans that identify potential areas of risk by assessing the adequacy of internal controls

Conduct detailed process reviews to evaluate client environments. Determine adequacy of controls, compliance with policies and procedures, and conformity to recognized security frameworks and regulations

Obtain documents and analyze data to form a decision on the adequacy of internal controls and compliance with policies, procedures and regulations

Prepare and execute audit findings reports with client engagement team

Work with client engagement on remediation strategies. Identify opportunities to strengthen controls and provide value added solutions



To be considered for this excellent new opportunity, please send a resume with salary history directly to joan.elewski@blueorangecompliance.com Your response will be held in strictest confidence.

Keywords: BlueOrange Compliance, Columbus , Technical Audit Analyst, IT / Software / Systems , Columbus, Ohio