Consultant for Network Infrastructure Audit

Arbetsbeskrivning

We are looking for a consultant with very good knowledge of network infrastructure audit. The consultant tasks: We aim to assess the internal control structure and the assessment and controlling of identified risks in the network infrastructure and data communication concerned.The audit is planned initially to consider the following specific areas of risk within the Operational Risk which is the relevant overall group level risk category. -Operational risk management, policies, contingency planning, deviation handling, incident system, follow-up and reporting.-Control mechanisms in the systems.-Management of outsourced services and partners.-Authorisation rules in operations and systems.-IT management We expect the right candidate to have: The project will be run as a normal Internal Audit activity with an internal project manager.Although, there is a need to engage an external consultant in order to fulfil audit objectives sufficiently. -Working actively with the most phases of the project, e.g.planning, performance and reporting phases of the audit and in cooperation with the internal project manager from GIA.Only one external expert is needed in the project. -Ability and competence to identify and assess network related IT risks and recommend proper actions in order to mitigate the potential risks affecting If s business operations. -Evaluation of the network infrastructure requires expert knowledge that has specific and up-to-date knowledge of the computer networks including architecture, protocols, the devices and the software deployed at the network. -Ability to translate and connect identified risks to If s business objectives, i.e.formulate the business impact of the potential network related risks and vulnerabilities. -Ability and competence to apply acceptable international code of practice i.e.adhere to recognised and relevant standards and frameworks for audit/IT-audit, control and security (COSO, Cobit, ISO/IEC 27000). -Assist the project manager to perform interviews with network related management and staff within If P&C Nordic and external service providers.Further testing procedures will be performed if deemed necessary.Travelling within the Nordic area is required. -Reporting and communication of identified issues, risks and recommendations in English. -Documented experience from internal audit projects as well as similar network audits at least 5 years and certified according to CIA, CISA, CISM or CISSP. -Availability of the engaged consultant is required during the entire project

Sammanfattning

  • Arbetsplats: EBC AB
  • 1 plats
  • Heltid
  • Publicerat: 14 april 2010
  • Ansök senast: 30 juni 2010

Postadress

Box 1228
UPPSALA, 75142

Liknande jobb


Specialist inom It-säkerhet

Specialist inom It-säkerhet

25 november 2024

21 november 2024

Cybersecurity Architect

Cybersecurity Architect

18 november 2024