Cybersecurity Auditor
Location
Pune, Maharashtra, India
Work type
Hybrid
Employment
Full Time
Experience
2-4 years
Compensation
Compensation not disclosed
Posted
11h ago
Summary and responsibilities
Role overview
Summary
The Cybersecurity Auditor will perform internal audits, manage cyber risk, and ensure compliance with enterprise cybersecurity control frameworks, policies, and procedures. This role involves working with cross-functional teams to improve control effectiveness, execute internal audits, and respond to customer assessments, while also identifying and treating emerging cybersecurity risks.
The global Governance, Risk and Assurance team is responsible for maintaining compliance with enterprise cybersecurity control frameworks, policies and procedures. The team is part of the global Cybersecurity Engineering and Assurance organization at Cornerstone OnDemand.
The Cybersecurity Auditor is a critical role in supporting the overall strategy and vision of the Cybersecurity Engineering & Assurance team, and reports into the Associate Director of Cybersecurity & Assurance.
In this role, you will be responsible for performing internal audits, enabling cyber certifications and external audits, managing cyber risk and ensuring continued assurance with the company’s compliance frameworks. Activities include working with cross-functional teams to improve the maturity and effectiveness of cybersecurity controls, executing internal audits, keeping policies and operating procedures up-to-date, responding to customer assessments, and producing metrics, scorecards, reports and dashboards periodically.
Key Responsibilities:
Perform cybersecurity audits and risk assessments in all areas of the organization in line with the global Internal Audit Program’s objectives.
Document audit procedures, recommend remediation plans and liaise independently with stakeholders to validate implementation.
Work with functional owners to ensure control objectives and activities meet compliance standards for effectiveness and assurance evidence.
Publish and present timely and high quality audit reports
Partner with leaders across business functions such as Engineering, Cloud Operations, Privacy, Product and Customer Success to implement effective cybersecurity controls.
Identify emerging cybersecurity and information technology risks, evaluate internal controls to treat risks, and develop opportunities to continuously uplift control frameworks
Work with Cornerstone’s external partners and cross functional teams to schedule appropriate internal audit testing and/or risk assessments.
Perform formal reviews of new technologies, initiatives and strategic projects against the company’s cybersecurity requirements.
Recommend updates to cybersecurity policies, standards and operating procedures to address new industry practices, requirements and regulations.
Illustrate ownership and accountability and ensure operational efficiency.
Requirements
Degree in Information Technology, Computer Science, Cybersecurity or related fields
CISA, CRISC, CISSP and/or ISO 27001 LA/LI desired.
Technical Expertise
2-4 total years of experience in cybersecurity, compliance, IT audits and/or cyber risk management
Hands-on expertise in industry-standard cybersecurity assurance standards (e.g., SOC 2, ISO 27001, NIST, PCI DSS, SOX 404, etc.), trends and best practices
Experience in auditing general and automated controls, including but not limited to logical security, physical security, change and problem management, data backup, disaster recovery and incident management.
Knowledge of security tools, technologies and control best practices for domains such as IAM, encryption, system hardening, anti-malware, data leakage prevention, NIDPS, network security and vulnerability management.
Hands-on exposure to auditing and/or securing leading cloud PaaS technologies platforms such as Amazon Web Services, Google Cloud and Microsoft Azure.
Proficient in Word, Excel, PowerPoint and other Microsoft 365 tools.
Mature data analysis, documentation, articulation and presentation skills.
Ability to communicate effectively with stakeholders across global regions and organizational levels.
Ability to work autonomously with flexibility and excellent judgment.
Ability to work effectively under pressure to meet deadlines.
Ability to solve problems quickly and automate processes.
Ability to work cooperatively as part of a team.
Updated 11h ago
Candidate fit
Skills and qualifications
Additional skills
Experience
2-4 years
Certifications
How this role is positioned
Role classification
Job domains
Industries
Employment
Full Time
Contract duration
Permanent
Hiring type
Direct
Global hiring
Location specific
Offer details
Compensation and benefits
Compensation
Compensation not disclosed
Location, schedule, and role shape
Work setup
Work conditions
Bandwidth profile
Context on the employer
Company snapshot
Company
Cornerstone OnDemand
Team size
Growing team
Location
Pune, Maharashtra, India
Cornerstone powers the potential of organizations and their people to thrive in a changing world. Cornerstone Galaxy, the complete AI-powered workforce agility platform, meets organizations where they are. With Galaxy, organizations can identify skills gaps and development opportunities, retain and engage top talent, and provide multimodal learning experiences to meet the diverse needs of the modern workforce. More than 7,000 organizations and 100 million+ users in 180+ countries and in nearly 50 languages use Cornerstone Galaxy to build high-performing, future-ready organizations and people today.
Popular Domains
Explore opportunities across specialized functional areas.
Trending Industries
Discover roles in the world's most innovative sectors.
Cybersecurity Auditor
Pune, Maharashtra, India • Full Time