Conduent Jobs

Through our dedicated associates, Conduent delivers mission-critical services and solutions on behalf of Fortune 100 companies and over 500 governments - creating exceptional outcomes for our clients and the millions of people who count on them. You have an opportunity to personally thrive, make a difference and be part of a culture where individuality is noticed and valued every day.

CAS Client Assurance Analyst III

Job Purpose Summary

The Client Assurance Analyst III, Corporate Audit Services (CAS), reports functionally to the Client Assurance Manager/Sr. Manager and is responsible for conducting information security audit engagements, providing sound project management as requested. Common tasks include project planning and execution, independently generating documentation.

Key Responsibilities and Accountabilities

General

• Demonstrate sound presentation, written, and interpersonal communication skills

• Communicate with audit staff, and IT management clearly and concisely

• Independently document audit planning files, supporting evidence, workpapers, and draft audit reports/memos

• Provide day-to-day guidance and constructive feedback to audit staff to facilitate their growth and development

• Independently lead and organize internal auditee/client meetings during all phases of an engagement

Planning

• Assist audit leadership in the execution and development of the audit plan

• Develop effective and efficient scheduling for audit engagements within assigned scope of responsibility

• Perform engagement-level risk assessments to identify key objectives, associated risks, and mitigating controls based on audit scope

• Apply sound judgment in scoping and planning Information Security audits

• Identify and assess complex risks and provide advice to management regarding understanding and treatment

• Assist in establishing and implementing policies

Execution

• Implement and adjust project plans to ensure engagement delivery in accordance with project budgets and timelines.

• Supervise resource workload and task prioritization on audit and advisory engagements

• Execute 1-3 Information Security audits simultaneously, including reviews of cyber security, existing production applications, systems currently being developed, technology infrastructure, and specialized or emerging technologies

• Assess the controls over application processes, physical and logical security; systems acquisition and development; system and network infrastructure; system architecture; change management; computer operations; and production support

• Apply audit methodology to meet specific audit engagement objectives

• Prepare draft informative presentations on IT and/or process risk

• Develop data analyses and provide management with proper context of potential risk exposure due to control weaknesses

• Implement, and monitor project plans to ensure engagement delivery in accordance with project budgets and timelines

• Track and communicate progress towards established engagement goals and milestones to project leaders

• Document audit deliverables in compliance with Client Assurance standards

• Facilitate and monitor corrective action taken by management to remediate Findings and Opportunities identified during audit engagements

People Management

• Adjust own working style to fit specific circumstances

• Analyze own strengths and weaknesses to maximize personal contribution to the mission and goals of the Client Assurance department

• Define own performance goals with support for audit management

• Provide constructive and timely feedback to team members

• Seek opportunities and participates in professional development initiatives

• Demonstrate cultural sensitivity and leverages and promotes diverse viewpoints

• Capacity to lead functional teams or projects to solve complex problems and deliver solutions

Relationship Management

• Participate fully as a team player

• Establish and maintain harmonious working relationships with co-workers, staff, and external contacts, and work effectively in a professional team environment

• Work to remove team barriers and to maximize the effectiveness of the Client Assurance department

• Apply excellent written and verbal communication

• Requests guidance in complex situations as needed

• Communicates difficult concepts and negotiates with others to conclude on goal-centric points of view

• Contributes to departmental business planning and solution design

• Interprets challenges and recommends best practices to improve processes

Job Specifications & Competencies

Critical Competencies

• Builds and Shares Knowledge

• Communicates Clearly and Effectively

• Possesses Business Acumen

• Possesses Risk and Process Knowledge

Relevant Areas of Knowledge

The list of relevant knowledge areas that follows is a broad, representative list of knowledge and technical skill areas relevant to this position. It is generally expected that this position would possess or demonstrate basic knowledge in some of the areas listed below.

• As a subject matter expert or stakeholder, has previously supported information security audits in any of the following frameworks or regulations (2+ years minimum): PCI DSS, NIST, SOC 1 or 2, ISO 27001, Sarbanes-Oxley (SOX) or HITRUST

• IT infrastructure and operations

• Reporting on HITRUST Audits

• Data analysis and continuous monitoring (e.g., PowerBI, Tableau)

• Proficiency in standard business computer applications (e.g., Microsoft Office, project management)

• Understanding of security frameworks (NIST, PCI, OWASP, etc.)

Specialty Skills/Knowledge

• Auditing across large scale investment organization, performing risk and data analysis, delivering high quality audit reports, and communicating to senior leaders on results and corrective actions

• Audit risk and control experience in general and application control environments, including information security, identity and access management, incident analysis, database security, operating system analysis, logging and monitoring and change management

• Analytical, technical, and auditing skills with exposure to IT and compliance audits

• Ability to work on multiple tasks and manage priorities and workload as part of an agile team

Qualifications

• BA/BS in Technology, Information Systems, Cybersecurity, Engineering, or related field of study

• Advanced English Speaker

• Holds at least one IT or Information Security certification; willingness to certify in Information Security if not already within 6 months on the job

Preferred (Optional)

• Professional audit or information security certifications preferred (CIA, CPA, CISA, CISSP, SANS GIAC, etc.)

• Experience in a recognized process improvement discipline (e.g., Six Sigma, Lean, CMMI, ITIL, PMP)

• Reporting on Controls at a Service Organization – SOC1/SOC2

Conduent is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, creed, religion, ancestry, national origin, age, gender identity, gender expression, sex/gender, marital status, sexual orientation, physical or mental disability, medical condition, use of a guide dog or service animal, military/veteran status, citizenship status, basis of genetic information, or any other group protected by law.

People with disabilities who need a reasonable accommodation to apply for or compete for employment with Conduent may request such accommodation(s) by clicking on the following link, completing the accommodation request form, and submitting the request by using the "Submit" button at the bottom of the form. For those using Google Chrome or Mozilla Firefox please download the form first: click here to access or download the form (https://downloads.conduent.com/content/usa/en/file/conduent-applicant-adaaa-referral-form.pdf) . You may also click here to access Conduent's ADAAA Accommodation Policy (http://downloads.conduent.com/content/usa/en/document/cdt_adaaa_accommodation_pol.pdf) .

At Conduent we value the health and safety of our associates, their families and our community. For US applicants while we DO NOT require vaccination for most of our jobs, we DO require that you provide us with your vaccination status, where legally permissible. Providing this information is a requirement of your employment at Conduent.