BAE Systems Senior IT Auditor in Reston, Virginia
BAE Systems, Inc. is looking for a Senior IT Auditor to join the Enterprise Shared Services (ESS) Cyber Audit team in Reston, VA. In this risk and compliance role, you will perform a wide range of compliance and assurance activities serving as the primary liaison for ESS-IT and driving improvements in control and governance processes.
Manage and coordinate internal, external, and regulatory audits of ESS IT infrastructure, applications, end-user services, governance, and cybersecurity including coordinating conferences / interviews, facilitating data / information requests, assessing audit conclusions / reports for accuracy and completeness, assisting management with review and response to audit findings, and providing status updates to senior management as needed.
Independently leads annual control and compliance assessments including the IT Security Controls Framework audit (similar to NIST 800-53A), DFARS audit (Defense Federal Acquisition Regulation Supplement), and other similar assessments including independently conducting compliance tests, evaluating testing results, and concluding on the effectiveness of controls and the extent of compliance.
Leads projects to improve the risk and control environment through ad hoc control / compliance assessments, increasing awareness and knowledge of internal and regulatory compliance requirements, and identifying ways to streamline or improve the control environment without increasing overall risk.
Oversee the quarterly ESS IT Control Owner Self-Assessment (COSA) process by coordinating efforts, monitoring due dates, providing guidance to functional areas and reporting result to senior management.
Reviews planned corrective actions for adequacy, monitors open recommendations and plans of actions and milestones (POAMs) for timely completion, and validates remediation has been implemented in compliance with controls and requirements.
Collaborates with IT Business Partners, management, and other stakeholders to maintain awareness of changes in risk profiles, has familiarity with the Risk Management Framework methodology and promotes the awareness of risk and compliance initiatives and deliberate options in addressing emerging risks.
Provides advisory and investigation support to management and IT Business Partners as needed.
Typical Education & Experience
Typically a Bachelor's Degree and 8 years work experience or equivalent experience
Required Skills and Education
Typically a Bachelor's Degree and 8 years work experience or equivalent experience.
CISSP and CAP certifications a plus.
8 years of relevant, hands on experience working with and / or supporting IT Operations and Service Delivery as technical support staff or manager; plus
Solid understanding of information security frameworks and IT audit methodologies.
Demonstrated proficiency in IT solutions engineering and deployment.
Proficient with a broad knowledge of enterprise IT infrastructure technologies and applications such as WAN/MAN/LAN; Active Directory; Backup & Recovery; Data Center and Storage; Messaging; Mobile Technologies; Remote Access, Borderless and Edge technologies; Operating Systems; Unix, Windows, and Virtualization Services; Applications; and Engineering, Enterprise, and Cybersecurity tools.
Experience contributing to risk-based solutions structured around business priorities.
Must have excellent verbal and written communication skills, and the ability to translate the intent of the controls to all levels of understanding.
Preferred Skills and Education
Bachelor's Degree or Master's degree preferably with an emphasis in information systems, computer science, accounting, business, or related field.
8 years of experience in an audit or compliance role.
Certification in one or more of the following:
o Certified Authorization Professional (CAP)
o Certified Information Systems Auditor (CISA)
o Certified Information Systems Security Professional (CISSP)
About BAE Systems, Inc.
BAE Systems is a premier global defense and security company with approximately 90,000 employees delivering a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support and services. People are the greatest asset in any Company. BAE Systems is committed to hiring and retaining a diverse workforce. Equal Opportunity Employer/Females/Minorities/Veterans/Disabled/Sexual Orientation/Gender Identity/Gender Expression
Senior IT Auditor
EEO Career Site Equal Opportunity Employer. Minorities . females . veterans . individuals with disabilities . sexual orientation . gender identity . gender expression
- BAE Systems Jobs