No more applications are being accepted for this job

Technology Information Security Auditor - London, United Kingdom - Speechmatics Limited

Speechmatics Limited London, United Kingdom

3 weeks ago

Description

Speechmatics is a cutting-edge, applied AI research company, revolutionising the way people harness the power of voice technology. We are seeking a highly skilled and motivated Information Security Auditor to join our agile team. As an ISA, you will play a crucial role in safeguarding our systems, networks, and sensitive information.

You will be responsible for evaluating and enhancing our security controls, conducting risk assessments, and ensuring compliance with industry standards and regulations; ensuring they comply with applicableSpeechmaticsISO, SOC2 and HIPAA security standards, regulations, and policies.

You will be reporting directly to our CISO and will collaborate with various stakeholders including senior management, department heads and internal/external auditors.

You will conduct comprehensive security audits and assessments to identify vulnerabilities, assess risks, and ensure compliance with industry standards, regulatory requirements, and internal policies.

You'll collaborate with cross-functional teams to identify, prioritise, and mitigate security risks. Develop and implement risk management strategies to protectSpeechmatics' assets and data.
Stay abreast of relevant laws, regulations, and industry best practices for compliance monitoring. Provide guidance on secure coding practices and participate in the design and implementation of secure systems.
Play a key role in responding to and mitigating security incidents, conducting post-incident analysis, and implementing corrective actions.
Develop and deliver security training and awareness programs to educate employees about information security best practices and policies.
Prepare and maintain detailed documentation of security assessments, audit findings, and mitigation plans. Possess good understanding of IT infrastructure (on-prem, cloud and/or hybrid).
Proven experience in IT audit, risk management, and cyber risk assessment.
Knowledge of IT controls risk assessment methodologies and regulatory requirements.
Additional auditing knowledge and/or certifications such as ISO Lead Auditor, CISA, CRISC, CISM, CISSP desired but not required.
#