Information Security Auditor
$42 per hourFreshfields Bruckhaus Deringer LLP
Freshfields is a global law firm with a long-standing track record of successfully supporting the world's leading national and multinational corporations, financial institutions and governments on ground-breaking and business-critical mandates.
Our people make our firm - we are a people business and want to create a welcoming and supportive environment where all can flourish. We see diversity as a strength which creates fresh perspectives and generates new ideas. We enjoy our work and are determined to do an outstanding job. We deliver best when working in teams. We think and work globally - we do not just say we are one firm; we act like one firm right across the world. We work wherever our clients need us. This is how we define ourselves, not by reference to where we have offices. Cross-border work is not just what we do, it is what we excel at. We understand what it really takes to work across different legal systems and commercial environments and to bridge language and cultural gaps. We aim to add value in everything we do - we are enthusiastic about helping our clients succeed. We use our experience and creativity to help clients make judgements and achieve their goals. In everything we do, we seek to make a real difference to the communities in which we operate. Department and Location Overview Formed in 2014 the Information Security Group (ISG) focuses on delivering operational and strategic information / cyber security and business continuity. The group is independent of IT. Operationally the Information Security Committee and Conduct and Risk Committee oversee the group. The Chief Global Information Security Officer reports into the General Counsel and Global Risk Partner.The ISG department is based mainly in the firm's London and Manchester offices. The Freshfields Global Centre in Manchester provides both business and legal services to the firm. Our services are delivered in a way which supports the global nature of our firm and our clients, enables our fee earners to deliver exceptional service to our clients and to do that in a way which is efficient and effective.
Role summary / purpose of job The primary focus of this role is to assess the security of new and current suppliers and audit the security and business continuity controls applied to core areas of the firm's operation. This is a vital role in improving the firm's compliance position during a period of heightened technological change. Key responsibilities and deliverables
- Perform information security assessments on new and current suppliers.
- Carry out specific Artificial Intelligence (AI) and emerging technology risk assessments. Evaluate security risks introduced by AI/ML tools, LLM deployments, and automation used by suppliers internally.
- Manage continuous third-party monitoring.
- Monitor automated risk monitoring platforms (BitSight and SecurityScorecard).
- Review and update ISG vendor and audit related policies and processes.
- Design risk mitigation measures in response to information security findings arising from supplier assurance activity.
- Support assurance and review activity following incidents or investigations, including control assessment, root cause analysis, risk identification, and lessons learned.
- Metrics and governance reporting. Produce regular KPI dashboards for management reporting.
- IT/information security auditing experience and/or running third party risk management processes.
- Detailed understanding of ISO 27001/ ISO22301
- Relevant auditing qualifications (Lead ISO27001 auditor, Internal ISO27001 auditor, or equivalent alternative auditing qualifications)
- Working knowledge of technology, software and approaches utilised in the corporate and legal industry.
- Ability to work autonomously, effectively prioritise and manage large and varied workloads, adapting action plan accordingly.
- Experience of influencing stakeholders across departments and translating complex technical requirements into clear practical actions.
- Working knowledge of DORA, NIS2, UK GDPR, EU AI Act, and the UK Cyber Security & Resilience Bill
- CISM
- CISSP
- Knowledge of Cloud services (SaaS, PaaS and IaaS)
- Knowledge of containers and virtualisation
- Understanding of global cyber security and privacy laws and application to both internal and external data subjects
- Previous legal sector experience.
- An excellent communicator and multi-tasker with exceptional organisational abilities
- Ability to engage across diverse global jurisdictions, aligned with the firm's stated diversity values.
- Ability to influence and collaborate with colleagues across teams.
- Comfortable interpreting security metrics and presenting risk posture to senior leadership and governance committees. Ability to combine a good eye for detail with big picture corporate considerations.
- Detailed, focused and pragmatic
- Motivated and initiative-taking, with an eagerness to learn and develop.
Freshfields US LLP is proud to be an equal employment employer. Our policies and practices will be free from unlawful discrimination based upon race, color, ethnicity, religion, creed, sex (including pregnancy, childbirth or related medical conditions), national origin, citizenship, immigration status, ancestry, age, marital status, protected veteran status, military service, disability, medical condition, genetic information, sexual orientation, gender identity, or any basis prohibited under federal, state or local law. We strive to promote an atmosphere that encourages equal opportunities and prohibits discriminatory practices, including sexual harassment. Disability Accommodation for Applicants to Freshfields US LLP
Freshfields US LLP is an Equal Employment Opportunity employer and provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in job application procedures. If you have any difficulty using our online system and you need an accommodation due to a disability, you may use the alternative email address below to contact us about your interest in employment at View email address on click.appcast.io , or you can send your resume to View email address on click.appcast.io , or you can call us at View phone number on click.appcast.io.
Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Information Security Auditor in New York, NY vacancy
$42 per hour
...primary focus of this role is to assess the security of new and current suppliers and audit... ...and Deliverables Perform information security assessments on new and current... ...auditing qualifications (Lead ISO 27001 auditor, Internal ISO 27001 auditor, or equivalent...SuggestedLocal area- Home » Auditor-Responsible Care Subcontractor Auditor-Responsible Care Subcontractor Role: Auditor-Responsible Care Subcontractor... ...standards within Quality, Environmental, Health and Safety, Information Security and Business Continuity. Work/life balance is very...SuggestedFor subcontractorRemote work
$53.6k - $67.5k
About the Role The IT Auditor will principally support the Company’s Internal Controls compliance... ...You'll Do Assist with the review of Information Technology General Controls (ITGCs) to... ...Ability to understand information security and network risks, with a strong technical...SuggestedWork at officeRemote workFlexible hours$105k - $154k
...recommendations to management. We are looking for a Senior IT Auditor to support Internal Audit SOX testing as well as other... ...including an IT Audit methodology and approach. Partner with Information Security, business and system owners to ensure controls are being properly...Suggested$115k - $140k
Sr. IT Internal Auditor page is loaded## Sr. IT Internal Auditorremote type: Hybridlocations... ...Mazars, etc.) - required.* Certified Information Systems Auditor Certification (CISA)... ...Cybersecurity controls (including network security), and IT infrastructure controls (including...SuggestedFull timeWork at officeFlexible hours- Auditors-HBA The Nurse Auditor conducts hospital charge audits on claims paid at percent... ...regarding the confidentiality of patient information. Conduct all job functions and responsibilities... ...all company Compliance, Information Security and Regulatory policies, procedures and...Contract work
$99k - $232k
...practices across internal audit teams Validating data integrity, security, and compliance within audit frameworks Identifying... ...Science, Business Administration/Management, Computer Science/Information Systems, Economics, Engineering, Finance, Financial Mathematics...Full time$75k - $130k
...executing the audit plan primarily covering Synchrony Financial’s Information Technology organization. In addition, the incumbent... ...Asset Management (ServiceNow CMDB) & Configuration, Information Security, IT Project Management, Synchrony specific business applications...Visa sponsorshipWork visa- ...InComm's Internal Audit & Risk team is looking to add a Senior Auditor to our org! As an Internal Auditor III, you will be... ...timely decision, quickly determines sources of problem, identifies information needed to solve problem and analyzes alternative solutions, communicates...Full timeLocal area
- ...industry or government, with exposure to controls in such diverse functional areas as accounting, finance, operations (service-based), information systems and project management. Knowledge required : Techniques of internal/external auditing; principles of internal...Work at office
$100k - $120k
...Job Description Are you looking for your next opportunity? Sompo has a unique opportunity for a Sr. Auditor to join our North America Internal Audit team. This is an excellent opportunity to work in a dynamic, global organization and gain exposure to a broad...Full timeWork at officeFlexible hours- Overview Department: Audit Employment Type: 全职 Location: Flushing, NY (Headquarters) Reporting To: Audit Supervisor Under the direct supervision of the Supervisor/Manager/Partner, this position will require independent judgment to plan, prioritize and organize a diversified...Work at office
$109.9k - $125.4k
...Principal Auditor (Experienced Senior Auditor) Corporate Compliance Audits (Hybrid) Capital One’s Audit function is a dedicated group... ...inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you...Full timePart timeLocal area3 days per week$87.7k - $100.1k
...Senior Auditor, Audit Professional Practices - Methodology (Hybrid) Capital One’s Audit function is a dedicated group of professionals... ...related issues, gap assessments, regulatory requests for information), owning completion of assigned work. Design and deliver verbal...Full timePart timeLocal area3 days per week$75k - $85k
...role. Job Description: The Senior Auditor executes audits for an assigned... ...Ability to process and handle confidential information with discretion Utilize AI and emerging... ...for ADA purposes. Who We Are TD Securities offers a wide range of capital markets...Work at officeLocal areaWork from homeFlexible hours- ...on audits and/or regulatory validations related to Swap Dealer Risk Management, market risk management, global markets trading, securities finance, liquidity and margin services. Familiar with key aspects of the Market Risk Management (MRM) framework including market...Temporary workWork experience placementWorldwide
- Audit Position Audit position. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender, identity, national origin, disability, or protected veteran status.
$126k - $159k
...Savantage Solutions is seeking a highly analytical Senior Auditor to support a Government Agency's Audit Response, Remediation, and Sustainment... ..., decision briefs, and status updates/briefings to inform leadership decisions. Knowledge, Skill, and Abilities: DoW Financial...$74.8k - $112.2k
...Financial Group Job Title: Senior Internal Auditor Location: New York, NY (hybrid) Who We... ...they need to achieve greater financial security. Our Company is built upon a solid foundation... ...to federal employment laws. For further information, please review the Know Your Rights...Work at office- ...Senior Auditor Employment Type: Full Time, Mid-level CGS is seeking a Senior Auditor who will assist the district legal staff by conducting medical claims data analysis, forensic investigations, financial damages, statistical sampling, and ability-to-pay analyses...Full timeRemote workFlexible hours
$55.07k
...Construction, Division of Safety and Site Support seeks a Safety Auditor. The selected candidate will be responsible for overseeing all... ...and control of health and safety hazards. Additional Information The City of New York is an inclusive equal opportunity employer...Permanent employmentFull timeFor contractorsWork experience placementH1bLocal areaVisa sponsorship- ...space? If so, we want to hear from you Position Summary The 340B Auditor conducts the audit process and collaborates with 340B Analysts... ...changes to client internal audit process as appropriate Relay information regarding the current HRSA audit process and potential changes...
$102k - $203k
...analysis and resolution. To be successful in this role, we’re seeking the following: Bachelor’s degree in computer science, Information Technology, or a related field (Master’s degree preferred). Minimum of 12-15 years of experience in IT auditing or...Temporary workWorldwideFlexible hours$65k - $75k
...Brown Brothers Harriman (BBH) is recruiting an Auditor for its Internal Audit team. The role focuses on assisting audit team members... ...race, color, religion, gender, national origin, age, genetic information, creed, marital status, sexual orientation, gender identity, disability...Local area3 days per week$85k - $91.98k
...Job Title: Senior Auditor/Analyst Salary Range: $85,000 – $91,978 Open & Closing Dates: Open Until Filled Agency: Office of the Inspector General/Metropolitan Transportation Authority Location: New York City, New York Hours: Full-Time Office of the Metropolitan Transportation...Full timeFor contractorsWork experience placementWork at office- ...Job Summary Senior Auditor, Financial Operations – Comcast Global Audit Team Responsible... ...g., current events, audit trends, cyber security, etc.). Applies sound judgment and self‑... ...applies to engagements. Disclaimer This information has been designed to indicate the general...Work experience placementNight shiftWeekend work
- ...Auditor The New York City Department of Environmental Protection (DEP) enriches the environment and protects public health for all... ...programs and state repayment assistance programs. For more information, please visit the U.S. Department of Education's website at...Full timeContract workWork at office
- ...Auditor Employment Type: Full-Time, Mid-Level Department: Financial CGS is seeking a highly skilled Auditor to provide general... ...investigation process for use by staff members. Arrange for secure storage, preservation, organization and indexing of voluminous...Full timeWork experience placementInterim roleWork at officeLocal areaRemote workFlexible hours
- ...Senior Auditor The Campaign Finance Board is a nonpartisan, independent city agency that empowers New Yorkers to have a greater... ...initiative, meets people where they are to share trustworthy election information and help New Yorkers make a plan to vote. We publish the...Work at officeLocal area
- hackajob is collaborating with BNY to connect them with exceptional professionals for this role. In this role, you will make an impact in the following ways: Leads or performs audits related to Finance reporting activities and works as a team member on audit assignments...Work experience placementWorldwide
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Information Security Auditor. Be the first to apply!
Related searches


