Description
We are seeking an adaptable, self-motivated, and detail-oriented Senior Internal Auditor to plan, lead, and execute internal audit engagements to insure the effectiveness of Coretek’s Information Security Program and internal business processes. The ideal candidate will have a strong background in auditing, risk assessment, and compliance. This role involves continuous planning, participation, and execution of internal and external audit engagements to ensure effectiveness of controls and compliance with relevant standards and frameworks.
Key Responsibilities:
· Act as a subject matter expert for Coretek’s audit frameworks and engagements.
· Plan, perform, and coordinate internal audits, ensuring compliance with organizational controls, policies, and processes.
· Prepare detailed internal audit reports that clearly articulate the objective, scope, results, findings, recommendations, and action plans for each audit.
· Distribute internal audit reports to stakeholders and conduct follow-up meetings to further discuss audit results, as needed.
· Prepare executive-level updates and reporting for status of internal and external audits and identified issues.
· Design and implement new internal audits to contribute to the effective monitoring of the Information Security Program.
· Prepare and maintain internal and external audit schedules and ensure that Coretek stays aligned with those schedules.
· Communicate internal/external audit schedules and updates to organization stakeholders.
· Assist with coordination of external audits and serve as a point-person in these audits, providing requested artifacts and information to external auditors.
· Work with stakeholders across the organization to gather and assess audit evidence.
· Follow up with stakeholders to collect evidence for internal/external audits in a timely manner.
· Work closely with management to develop action plans and monitor progress of identified gaps and issues.
· Leverage internal tools and procedures to assess and track controls and testing requirements
· Utilize data analytics to identify trends, patterns, and anomalies in audit data.
· Take responsibility for meeting audit deadlines
· Apply lessons learned to continuous improvement opportunities
· Respond to client requests for SOC 2 Type II reports, ISO certificates, etc.
· Stay updated on industry trends, regulations, and best practices.
· Foster a collaborative and supportive team environment.
· Provide guidance and support to junior auditors.
Skills:
· Self-motivation
· Strong analytical, critical thinking, and problem-solving skills
· Strong attention to detail
· Adaptable with ability to thrive in a fast-paced environment
· Strong organization and time management skills
· Ability to handle multiple projects simultaneously
· Excellent verbal and written communication
· Ability to work independently and as part of a team
Qualifications:
· Minimum of 5 -7 years prior audit experience
· Practical application and working knowledge of ISO 27001, ISO 27701, SOC 2, and NIST 800-171 controls
· Familiarity with Azure Expert MSP preferred
· Experience in the service provider or multi-tenant environment
· Four-year degree or equivalent industry experience
· Proficiency in Microsoft Office Suite
· Professional certification such as CISA is preferred
· Working knowledge of Drata GRC software preferred
