• As an Information Security Auditor, you'll be responsible for safeguarding internal company data and client data through robust information security, compliance, and risk management programs. • Manage the development, deployment, and execution of controls and defenses to ensure the security and compliance of our technology infrastructure and data assets. • Develop and execute security controls, defenses, and countermeasures to prevent attacks on email, data, e-commerce, and web-based systems. • Administer policies to control access to systems. • Facilitate audit testing for SOC 2, PCI DSS, and develop and monitor controls, and assist with remediation guidance. • Lead audits of cloud environments, information systems, and security tools to ensure adherence to frameworks, laws, and regulations. • Support comprehensive assessments of security controls to determine their effectiveness and ensure they meet security requirements. • Guide stakeholders on securing systems and liaise with auditors and compliance teams to implement compensating controls. • Research best practices and trends in information security, ensure execution of required testing, and lead remediation activities for successful security audits/certifications. • Identify weaknesses in internal controls, provide guidance on improving security compliance processes, and partner with stakeholders to implement solutions. • Ensure alignment with internal policies and external regulatory requirements, continuously identify process enhancements, and stay current on changing regulatory requirements and industry frameworks.