Looking for a Job?

Read the article by Deborah Walker: Three Tips for Career Growth to Survive Corporate Change

Last Updated: 8/13/08

Title:

Staff IT Security Engineer - Information Asset Protection

 

Description:

* Enhance Qualcomm's information asset protection practices through partnership with engineering and IT resources.

* Collaborate with engineering leads and IT peers to inventory and document information security around critical engineering intellectual property such as software code and hardware designs.

* Create, prioritize, maintain, and report on proactive/reactive improvements for engineering data protection methods, processes, and technologies.

* Lead/manage collaborative teams to improve engineering and  IT practices around data protection.

* Lead and assist in incident analysis, post-mortem resolutions, and other risk management activities specifically for large engineering environments.

* Assist in planning, design, and implementation of enterprise information security systems.

* Work with team members to determine information security frameworks, requirements, direction, and system recommendations.

* Design, implement, and maintain engineering information security policies, standards, procedures, and guidelines as needed.

* This position requires work in the fields of information security, IT infrastructure/apps, business process analysis, compliance, and project management.

* General contribution to the information security risk management program as needed.

* Architect, design, implement, and maintain secure solutions for engineering needs.

 

Skills/ Experience:

* Minimum two years of experience performing information asset risk management functions at strategic and tactical levels.

* Desired experience with large-scale software development packages such as Perforce, Clearcase, Subversion, Electric Cloud, LSF, VSS, etc.

* Desired experience with large-scale hardware development programs such as Cadence, Mentor, Pro/E, etc.

* Strong knowledge of current landscape and future trends in information systems security and risk management.

* Technical leadership skills to provide world-class information system solutions.

* Excellent cross functional relationship building skills.

* Strong written/verbal communications skills and the ability to interact w/ senior level engineering and IT leaders.

 

Additional Skills:

* Desired strong systems analysis, process analysis, and high technology environment experience.

* Should be familiar with gathering system requirements, performing independent analysis, and triaging complex incidents.

* CISSP, CISA, CISM, or GIAC certification a plus.

* Must be a US Citizen.

 

Education:

Bachelor's degree in Computer Science or equivalent experience preferred. Master's degree in Information Technology or equivalent experience preferred.

 

To Apply:

Please apply online at www.qualcomm.com/careers and apply using requisition number N1812747

  

PRINCIPAL INFORMATION TECHNOLOGY AUDITOR

Salary Range: Open within an established range of $80,000 to $115,000, dependent on qualifications and experience.

Recruitment: Open to all Qualified Candidates.

Filing Deadline: Open until filled. Candidates are encouraged to apply promptly as interviews and selection may begin upon receipt of resumes from qualified individuals. This process may be used to fill future unclassified positions within this Department.

The City:

With more than 1.2 million people, the City of San Diego is the eighth largest city in the United States and the second largest in California. The City of San Diego’s strong economy, diverse population, great educational institutions, unsurpassed quality of life and world-renowned location makes it the ideal place to work, live and play. With its great weather, miles of sandy beaches and major attractions, San Diego is affectionately known worldwide as “America’s Finest City

As one of the region’s largest employers, the City of San Diego has a combined Fiscal Year 2009 operating budget of approximately $3.3 billion and employs over 10,000 highly dedicated employees. Additional information about the City of San Diego can be obtained on the City’s website: www.sandiego.gov.

The Department:

The Office of the City Auditor is a newly created office charged with providing audit services to promote accountability to the public and to improve the economy, efficiency and effectiveness of our City government. The Office of the City Auditor is an independent office that reports to the City Council’s Audit Committee. Through performance audits, financial-related audits and special investigations, the Office of the City Auditor provides essential information to assist the City Council and the Mayor in its decision-making process. The Office of the City Auditor also provides valuable information to City management and the general public. Our mission is to advance open and accountable government through accurate, independent, and objective audits that seek to improve the economy, efficiency, and effectiveness of City government.

 

The Position:

Under the general direction of the City Auditor the Principal IT Auditor will perform challenging and innovative work to improve the economy, efficiency, and effectiveness of City government services and programs. This position will be responsible for planning and conducting IT audits of financial and operational business systems and applications. Additionally, this position will evaluate the adequacy and effectiveness of internal controls over IT systems and applications to assess the extent to which:

 

• Financial and operational systems can be relied upon to produce accurate and reliable information;

 

• IT business processes and practices are in compliance with City of San Diego policies/procedures, laws, regulations or contracts;

 

• Financial, property and information assets are properly secured and safeguarded (including controls and security over IT systems and facilities);

 

• IT resources are employed effectively and efficiently;

 

• IT operations and programs are carried out as planned, and results are consistent with City of San Diego’s goals and objectives; and

 

• Significant IT risks are appropriately identified and managed.

 

Key responsibilities for this position will include but not limited to:

 

• Perform risk assessments of City of San Diego IT systems, applications, networks, and associated operational areas to assist in establishing scope and developing audit plan and testing criteria;

 

• Verify the functioning of complex computer systems by performing testing of transactions to ensure application controls are adequately designed and operating properly;

 

• Conduct general computer control reviews to examine the adequacy of controls within the information systems environment, including but not limited to change control, back-up and recovery, etc.;

 

• Evaluate the operating effectiveness of system related financial reporting and disclosure controls;

 

• Perform business system and application security audits;

 

• Perform operational and compliance reviews of IT policies, standards, and procedures;

 

• Recommend corrective actions to improve controls and enhance operations;

 

• Provide recommendations on internal controls for new or existing systems and business applications;

 

• Write reports to the San Diego City Council identifying audit findings and recommendations; and

 

• Maintain a professional rapport with management and work to ensure recommendations are implemented.

 

Qualifications:

The ideal candidate will possess the following qualifications:

solutions;

 

Minimum qualifications include any combination of training and experience equivalent to completion of advanced undergraduate coursework in accounting, business or public administration or related field from an accredited college or university with at least eighteen semester units of information technology, accounting, finance, economics, or policy analysis; and four to seven years experience in IT Auditing or a related field. An advanced degree may be substituted for the required years of professional experience. Professional certification (CISA) and experience with ACL, MS Access, client/server security; controls issues (Oracle, UNIX, Windows environments); IT audit/controls experience in ERP (SAP) systems and supporting database/operating system environments (Oracle, HP-UX) is highly desirable.

Management Benefits:

The successful candidate will be eligible for participation in the City’s Flexible Benefits Plan that offers several optional benefit plans or a taxable cash option; $50,000 in City-paid life insurance; paid annual leave accruing at 22 days per year for the 1st through the 15th year of service; defined benefit City retirement with CalPERS reciprocity for those with eligible service; and, optional deferred compensation (457) and 401(k) programs. All employees must join the City’s Supplemental Pension Savings Plan (in lieu of Social Security participation) with a mandatory contribution of 3.00% of salary and up to 3.05% voluntary contribution. The City will match salary contributions up to 6.05%, which vest at 20% per year of participation. Benefits currently offered to employees may be subjected to future modifications.

Selection Process:

To be considered for this position, please submit two copies of your current resume including your current salary, a letter of interest highlighting your relevant work experience and a list of three work related references to: The City of San Diego, Personnel Department, Employment Information Center, 1200 Third Avenue, Suite 101A, Mail Station 51P, San Diego, CA 92101, in an envelope marked CONFIDENTIAL: Unclassified Recruitment – Principal Information Technology Auditor or email materials to PersUnclassified@sandiego.gov. EOE/ADA.

 

DIRECTOR of TECHNOLOGY COMPLIANCE:

 

Roles and Responsibilities: Gaming..

• Oversee the planning, preparation, testing, submission and tracking of technical and control submissions to the appropriate regulators.

 

• Accurately record and report on the status of submissions and approvals.

• Direct the management of timely and accurate submissions to the regulators in all jurisdictions concerned. In addition, ensure that submissions are complete in content and detail to meet regulators expectations.

 

• Work with the Nevada Gaming Control Board auditors to provide information for properties with regards to IT devices and processes.

 

• Review all technical and control submission packages to the specifications of each jurisdiction according to internal company procedures.

 

• Ensure that urgent or special changes are expedited, coordinated and that the regulator is informed in accordance with requirement or internal controls.

• Provide advice and assistance to individual properties in the development of documented internal controls pertaining to Information Technology.

• Annually review and update the IT Internal Control Standards.

• Maintain a dossier of all property internal control and operating procedures and ensure properties update these as required by new regulations or product changes.

• Ensure that requests from any regulatory organizations. are processed and expedited accordingly. • Oversee the control of regulatory submission documentation. Compliance will develop and update these and will include the following items:

• The maintenance of compliance filing systems.

 • A listing of all approved products and versions in the jurisdictions.

 • A listing of all products submitted but not approved in the jurisdictions.

 • A listing of all products being prepared for submission in the jurisdictions.

• A listing of all products, which will be required to be submitted in the jurisdictions. :: Sarbanes-Oxley Section 404

 

 • Understand and champion IT controls related to Sarbanes-Oxley Section 404 requirements. • Coordinate and facilitate annual testing with internal and external auditors.

 

• Communicate SOX requirements to IT, and work with areas through any remediation efforts.

 

• Oversee accurate records and the reporting of daily and monthly updates for Executive Management. • Lead efforts to secure controls and processes across IT.

 

• Represent the Compliance department as the key representative for IT on the SOX Project managed by corporate executives.

 

• Work with Internal Audit to facilitate year end audit reporting. • Establish procedures to ensure compliance of IT systems and processes.

 

• Oversee audit reviews throughout the year to ensure best practices are integrated into all environments. • Develop and manage a system that ensures IT areas are informed about SOX requirements and using best practices. • Work with auditors to gather information for risk assessments. :: Payment Card Industry (PCI)  

• Understand and champion IT controls related to PCI requirements. • Coordinate quarterly and annual testing with internal and external auditors.

 

• Communicate PCI requirements to IT and assist with compliance process. • Oversee the project management of any remediation items from yearly QSA review. • Develop and manage a system that ensures timely and accurate submissions are made to all payment card regulators. In addition, ensure that submissions are complete in content and detail to meet regulators expectations. • Oversee the management the requirements for the quarterly scanning process.

 

 • Act as a PCI advocate for all XXXX IT communications with other departments and organizations. Other Legislature or Other Requirements: • Work with Legal to understand legislature requirements for IT systems and processes.

 • Champion and drive enforcement of legislature requirements for IT systems and processes within the company. :

Experience, Education, and Certification Requirement

 

Sandra Salinas

Senior Executive Technical Recruiter

Link Technologies

9500 Hillwood Dr. Suite 112

Las Vegas, Nevada 89134

Phone (702) 233 8703

Fax (702) 233 8053

Email: SandraS@linktechconsulting.com

www.linktechconsulting.com

 
Job Title: Senior Internal Audit Consultant
Department: Internal Audit
 
ICW has an exciting opportunity for a Senior Internal Auditor to join our San Diego team! This position will participate in and lead audits of Company departments or programs, with a principal focus on IT audit. The Senior Internal Auditor will independently evaluate and appraise policies, procedures, and processes to ensure they are comprehensive and appropriate, an adequate internal control structure exists, and risks are properly identified and managed. Audits will generate recommendations to improve controls and processes, and will require follow up to ensure implementation. Background in IT auditing is required.

The right candidate will have a Bachelors degree (B.S. or B.A.) from a four year college and at least two to five years relevant training and progressive experience in internal auditing or a similar field. Certified Information Systems Auditor (CISA) or working towards CISA required. Knowledge of accounting principles (GAAP) and internal audit standards required.
       

Contact:

Kimberly States
Contract Recruiter
ICW Group
11455 El Camino Real # 200
San Diego, CA 92130
(858) 350-2442

 

 

ASSISTANT VICE PRESIDENT, INFORMATION TECHNOLOGY AUDITOR

For the 11th year in a row, LPL Financial Services (LPL) has been named America's number one independent brokerage firm*. Formed in 1989 through the merger of two small but successful brokerage firms, Linsco and Private Ledger, our firm continues to be an industry leader. Both a pioneer and innovator in the financial services arena, LPL manages over $95 billion in assets through its nationwide network of financial advisors. With dual headquarters in Boston and San Diego, we support over 7,500 financial advisors in more than 4,500 branch offices. The focus of our firm has always been on our advisors and our commitment to help them grow their business. In addition to providing independent research and operational support, LPL also leads the way on the technology front, offering innovative investment platforms that automate time-consuming functions. LPL's technology streamlines business processes for advisors, freeing up their time to focus on what they do best - provide sound financial advice and services to their clients.

LPL is a company for talented people who thrive in a dynamic, challenging and growth-oriented environment. You are invited to consider an opening for an Assistant Vice President, Information Technology Auditor in our San Diego office:

LPL Financial Services, headquartered in Boston and San Diego, provides access to a full spectrum of financial investments and services within the retail securities industry. As the leading independent brokerage firm in the US, we are currently searching for an AVP, Information Technology Auditor to join our team.

Job Responsibilities:
o Identify objectives, plan scope and conduct all phases of Information Technology and SOX audits.
o Identify opportunities to improve the internal control environment.
o Manage the end-to-end preparation and delivery of executive-ready audit reports.
o Full knowledge of the COSO and COBIT frameworks.
o CPA, CIA, CISA, CISSP, and/or CFE preferred.
o 5+ years of audit experience with solid career progression in public accounting or internal audit department for a large organization.
o Strong understanding of the audit function.
o Strong teamwork and excellent interpersonal and communication skills, including the ability to write executive-ready reports.
o Demonstrated ability to add value in control and risk analysis.
o Ability to develop and maintain effective working relationships with key business partners.
o Knowledge of Windows 2000, Oracle Financials, SQL, UNIX, Sybase, and networking.
o Financial services experience preferred; working knowledge of investment management, trust banking, or the securities industry a plus.

We offer an excellent salary and benefits package. Please login or create an account to apply to this position. Principals only. EOE.

Please send resumes to Ben Haden.

*Based on revenues, as reported in Financial Planning magazine, 1996-2006.


INFORMATION SYSTEMS AUDITOR SR.
SCRIPPS HEALTH, SAN DIEGO, CA
Full Time


Join a dynamic organization where you will be challenged and grow with a fast-paced, technology driven, leading healthcare organization with over 11,000 employees. This position is a key member of a nationally prominent Audit & Compliance Services Department and Information Security Team. Responsibilities will include, but are not limited to: reviews of implemented clinical and business application system controls, IT general controls for key infrastructure components, and new implementation projects.

The position will lead team reviews and oversee activities or other auditors, conduct audits and review processes and safeguards to protect the organization's information system resources and their data confidentiality, integrity, and availability, as well as assess related security system vulnerabilities for: application software systems, operating systems, telecommunication networks, disaster recovery, as well as Scripps policies, Information Technology procedures, and standards. Also, the position will provide support for compliance and investigative audit projects that are part of the annual audit plan or initiated based on new implementation projects, develop plans for remediation of internal control gaps and deficiencies, reducing costs, and or improving operational efficiency and effectiveness.

Basic Qualifications: Bachelor's degree required in Accounting, Management Information Systems, Computer Engineering, Computer Science, or a related discipline. At least two of the certifications of CISA, CIA, and CPA designations in good standing at the time of hire are required or successful active pursuit of these designations within 12 months of hire. Required experience/Specialized Skills: Ability to evaluate and audit complex information systems and related information security safeguards. Technical knowledge of information security concepts, information technology internal controls and safeguards, technologies, system vulnerabilities, and applicable rules and regulations. Understanding of key clinical information systems and processes in an integrated healthcare delivery environment. Knowledge of the IIA professional auditing standards, as well as internal and information security control frameworks and principles. Demonstrated effective interpersonal, written, and verbal communication skills. High level of personal accountability for accuracy, attention to detail, task prioritization, and timely completion. Ability to work independently under conditions of changing priorities due to investigations and special requests; important deadlines; and rapid response to security incidents. Strong technical skills and ability to learn and deploy computer assisted audit techniques (CAAT) through ACL audit software and other tools.

Preferred Qualifications: Master's preferred.

Please send your resume together with your salary requirements. Initial salary will be commensurate with experience and qualifications. The position will remain open until filled. To apply, visit us online at: Scripps Website

For further information, please contact:
Human Resources
Address: Scripps Health-CP2
4275 Campus Point Court
San Diego, CA 92121
EEO/ AA


Click the Monster link to see what is new in auditing.

Audit Jobs on Monster


June 26, 2008 Number: U8030  

The City of San Diego is accepting resumes for the unclassified position of