Apply now »

Lead IT Auditor

About the role

To effectively perform and manage the delivery of the internal audit program across respective business unit; in line with the business and certification requirements to International Standards, Industry Best Practice Frameworks and aligned with businesses policies, processes, and procedures. To ensure the effective delivery of internal/customer & supplier audit requirements.

 

Must have prior experience as a Lead Auditor – Ability to Lead Audits and working with any of the relevant management systems or other industry standards e.g., ISO27001, ISO20000, ISO9001, ISO14001, ISO18001/ISO45001, PCI-DSS, TISAX, HDS

 

Required certifications: CISMP (BCS Certification in Security Management Principals) CISA (ISACA Certified Information Systems Auditor) Certificate in ISO20000 Practitioner / Consultant

 

What you'll be doing

  • Embrace and support Computacenter’s mission and core values.
  • Partner with business leaders to deliver services that support company objectives and that are consistent with Winning Together values.
  • Leading by example and credibility to inspire commitment and a positive attitude to continual improvement.
  • Contributes to the overall strategic Computacenter Standards & ISO Audit Management objectives.
  • Ability to work towards teams and individual targets.
  • Understanding of role and dealing with possible conflicts of interest
  • Ability to deliver as a team and work alone.
  • Awareness for value in the best interests of the company
  • Ensuring all tasks are carried out in a timely manner.
  • Provide advice and guidance as Subject Matter Experts on queries relating to the requirements of the International Standards and Industry Best Practice Frameworks to support the business with compliance.
  • Promotes group-wide thinking and collaboration with departmental colleagues to ensure requirements are understood and are aligned to International Standards and Industry Best Practice Frameworks
  • Collaboration with departmental colleagues to ensure requirements are understood.
  • Maintain open and constructive working relationships with high degree of commitment.
  • Build and maintain effective working relationships with internal and external stakeholders.
  • Take ownership of queries and/or escalations and managing through to resolution
  • Support the GBU maintain and improve customer satisfaction levels through continual improvement.
  • Development of performance measures for the audit program.
  • Development and enhancements of the internal audit program and associated reporting
  • Manage the overall expectations of Computacenter internal customers across group and ensure key commitments are met.
  • Operating at global scale in targeted and proactive fashion
  • Standards & ISO Audit Management Operation
    • Takes accountability and acts as a single point of contact for the operation and application of an effective ISO Audit Program in accordance with published standards and frameworks across aligned Group Business Unit (GBU)
    • Understand GBU Risks and provide support through the audit program that risks have been mitigated appropriately (effective controls)
    • Continually improving our management systems with aligned GBU to ensure ongoing conformance.
    • Takes accountability for the aligned GBU in maintaining and/or achieve its ISO certifications with our aligned Registered Certified Body (RCB), where required.
    • Establishes productive relationships at Senior management levels within GBU to build and maintain customer relationships.
    • Understand the strategy of the aligned GBU and their major projects to ensure effective audit program
    • Collaboration with GIA Group Business Information Security Officer (GBISO) to ensure cohesive approach to our certification strategy is maintained.
    • Ensures liaison and provision of audit support with GIA GBISO on any issues relating to the GBU.
    • Liaise with external assessment parties and/or customer auditors, where required to ensure effective assessments or customer audits take place relevant to the GBU.
    • Participate in Industry External Audits for the relevant GBU e.g., Archilles PCI-DSS
    • Ensure objectivity and impartiality is always maintained.
    • Provides consultancy role within specialist areas to team and relevant business area reviewing for any changes affecting the organization.
  • Internal Audit
    • Performs credible internal audits in accordance with our Internal Audit Program requirements; taking into consideration risks as identified by the business, previous internal or external audit findings, changes to systems, people or processes and any new technologies or emerging security threats.
  • Internal Audit Activities
    • Leads for Computacenter, the management of an internal audit and consults with key stakeholders and business owners where required; communication of the audit plan, with scope requirements, followed by the retaining of documented evidence and the production of a report of the audit results.
    • Acts as interface with the business owners and operation, the communication of any issues raised, assess situation of issues raised and escalate when appropriate (in line with our Internal audit procedure)
    • Produces a Corrective Action Plan (CAP), where required and work with the business owners to address any issues raised ensuring evidence is provided through the verification process, prior to the closure of any issues.
    • Ensure effective management of corrective and preventative actions to support KPI reporting.
  • Governance and Certification
    • Takes accountability ownership and governs the internal audit program aligned to the GBU e.g., Internal audit program – audit schedules, reporting, corrective action plans and KPI reporting.
    • Drives resource to support Audit Program aligned to GBU provide GBU knowledge, guidance, and coaches team members, where required.
    • Performing as a credible capable professional and a subject matter expert in the relevant supporting the GBU with the requirements of the relevant management systems as appropriate to the GBU business operation
    • Provide governance with quality reviewing teams audit reports, including audit findings in line with internal audit procedures and ensuring this aligns to GBU.
    • Provide input into Management Reviews ensuing appropriate metrices are reported across GBU.
    • Establishes, monitors, evaluates, and reports metrics to provide sufficient reporting with accurate information regarding the effectiveness of the internal audit program.
    • Compiles management information reporting through relevant business tools to provide accurate and up to date data.
    • Identifies and reports recommendations for any extensions to current certification scopes. Contributes to the development of a business case to support any required associated investments in the Internal Audit Program
    • Priorities workload to ensure business and/or customers’ needs are met, and deadlines are adhered to
    • Understand overall departmental goals and priorities.
    • Defines Internal audit KPIs and their measuring against objectives.
    • Takes accountability for the identification and reporting of audit trends identified though the internal audit program and escalate, where appropriate
    • Takes ownership of queries and/or escalations and managing through to resolution
    • Develop effective working relationships through influencing and advising.
    • Support Line Manager with other team related activities, where required.
  • Customer Audits
    • Takes accountability to support the business with customer contractual obligations “right to audit.”
    • ensuring the appropriate Lead Auditor/Auditor is assigned to support the facilitation of pre/post audit activities, aligning to our internal audit processes, where required.
    • Report any chargeable services to Line Manager
    • Supplier Audits
    • Conducts supplier audits; reviews the effectiveness of security controls and other agreed requirements, as required by the business, aligning to our internal audit processes, where required.


What you have

  • Legally eligible to work in the United States.
  • Minimum of 4 years of auditing experience
  • Lead Auditor – Ability to Lead Audits and working with any of the relevant management systems or other industry standards e.g., ISO27001, ISO20000, ISO9001, ISO14001, ISO18001/ISO45001, PCI-DSS, TISAX, HDS
  • Hold one or more - CISMP (BCS Certification in Security Management Principals) CISA (ISACA Certified Information Systems Auditor) Certificate in ISO20000 Practitioner / Consultant
  • Proven experience of leading audits across geographies
  • Understanding of ITIL framework
  • Working knowledge of legislative & regulatory requirements including GDPR
  • Can interpret and apply the requirements of the relevant management system(s) to the business in relation to their operational processes and procedures.
  • Plan and organize own workload.
  • Good administrative experience, attention to detail, ensures accuracy of data, provides data for reporting and processing of information.
  • Ability to build relationships at all levels within the aligned GBU and influence senior management on the compliance of the management system requirements.
  • Strong orientation in commercial and organisational business practices and procedures
  • Strong knowledge of Information Security frameworks and standards such as ISO, PCI DSS, ITIL etc
  • Management of audit findings through to effective resolution
  • Ability to identify and drive best practice requirements.
  • Willingness to self-development of own knowledge according to market, customer, and CC requirements
  • Ability to work from the locations where Computacenter’s internal customers and ISP are based.
  • Ability to attain relevant security clearance.
  • Occasional business travel required.
  • Outstanding written and spoken communicative abilities; presentation and moderation skills; professional and convincing manner of appearance and expression; clear, targeted communication (verbal and written)
  • Strong decision-making skills. Influence and persuasion skills
  • High degree of independence, organisational skills, and time management
  • Ability to perform very well even under high pressure in a structured manner and to strict deadline.
  • Ability to influence with integrity & negotiate sympathetically.
  • Ability to work as part of a team.
  • Solution-oriented thinking and acting, high assertiveness.

 

What you can expect

There’s so much more to enjoy about being at Computacenter than just having a rewarding career. In addition to offering competitive compensation plans and long-term career opportunities, we provide an attractive mix of benefit plans to contribute to your good health, future financial security, and peace of mind.

 

About us

Computacenter is a leading independent technology partner, trusted by large corporate and public sector organizations. We help our world-renowned customers to source, transform, and manage their IT infrastructure to deliver digital transformation, enabling users and their business. We’re a public company quoted on the London FTSE 250 (CCC.L) and employ over 20,000 people worldwide. In the US, we support some of the country’s best-known businesses with regional hubs in San Francisco and Irvine, CA; Norcross, GA; Plano, TX; and New York City; and Integration Centers in Silicon Valley and Atlanta. www.computacenter.com/us


Nearest Major Market: Atlanta

Apply now »