More Than A Job!
Why do you work each day? To us, our jobs are not just something we do to make a living, it’s a way to live. We work to support our members; whether celebrating moments of joy, finding a solution to an obstacle, or offering encouragement through a time of struggle. The worth of our work isn’t measured in dollars and cents, it’s seen in our communities and felt by the people who believe in us.
Benefits Include:
- Financial wellbeing services
- 401(K) matching with up to 5% match
- Reduced health insurance
- Employee wellbeing services
- DE&I initiatives
- Work-life integration
What You'll Do
The IT Auditor works with internal audit, risk management, business and IT Management to plan and perform basic to complex internal and enterprise-wide IT, operational and regulatory audits. This responsibility includes performing internal audits of the software development life cycle, cyber security procedures and third-party risk management. The IT Auditor will assist in the planning and implementation of enterprise Information Security Technology systems, business operation, and collaborate with business units to facilitate defenses against security breaches and vulnerabilities. Facilitating audits and assessments with outsourced audit partners and supporting the organization during regulatory examinations, while supporting the administration of security policies, activities, and standards. Other responsibilities include identifying control deficiencies, assessing exposure and significance and the development and enforcement of system security policies, procedures, plans and programs.
- Assist in strategic security planning to achieve business goals by prioritizing defense initiatives. Participate in the evaluation, deployment, and management of current and future security programs.
- Advocate for the company’s security vision via regular written and in-person communications. Share Conduct new employee information security training and assist in the development of on-going employee information security training.
- Assist in the development, implementation, maintenance, and communication of policies which align with Business strategic goals, regulatory compliance and social media pressures for system security administration based on industry-standard best practices. Recommend changes in security policies and practices in accordance with changes in local or federal law.
- Assist in collaboration with Risk Management, Information Services Management, and the Culture + Engagement teams to establish and maintain a system for ensuring that security and privacy policies are met.
- Remain informed on trends and issues in the security industry, including emerging defensive controls, approaches and effective counter-threat measures being adopted in the industry.
- Conduct IT risk assessment by understanding business objectives, internal controls, enabling technology, and IT infrastructure.
- Perform audit work over various technologies utilized by the company and various IT functions. Assess both the design and operating effectiveness of internal controls
What You’ll Bring
- BA/BS degree in Computer Science or Information Security or equivalent demonstrated experience.
- A minimum of three (3) years job related experience is required.
- Information security related certification (CISA, CISSP, CEH, CRISC) preferred.
- Proven ability to support a strong member/customer service culture.
What You’ll Get
- Ability to collaborate and build a sense of togetherness that contributes to a positive work environment.
- Being open to change and embracing new opportunities can lead to diverse experiences and career advancement.
- By prioritizing member wellbeing, which leads to increased engagement, improved team dynamics, higher levels of motivation and a stronger community culture.
