Building Bridges, Moving Ahead
Work hard. Play hard. Breathe Easy. That’s a nutshell description of the professionals who thrive at Resurgent. Regardless of their position, our people are ambitious and entrepreneurial, attracted to the fresh point-of-view of an evolving, growing company. They are personable and patient, attracted to the collaborative nature of our company. And they are centered, understanding the balance needed to achieve success at work and harmony at home.

Summary:

The Data Security Auditor I is responsible for auditing the internal controls of vendors that provide services to Resurgent Capital Services to ensure the protection, confidentiality, and integrity of data being shared. This person will conduct reviews and make recommendations to ensure strong compliance, operational and security controls are in place to maximize servicing agreements while ensuring adherence to all security standards, procedures, and guidelines for multiple platforms. The auditor will prepare audit reports summarizing their observations during the audit and share

those results with management.

Responsibilities:

• Process owner and subject matter expert for the Shared Assessment Program data security audit process




• Process owner and subject matter expert for the Tier 2 & 3 Vendor Management process and database




• Plans and executes audit assignments in an efficient, timely, and professional manner




• Independently audits new and existing vendors to ensure efficient and accurate procedures are in compliance with data security standards




• Collects, reviews, analyzes and verifies the adequacy of internal controls, adherences to internal policy & procedures and client security expectations




• Conducts staff interviews, reviews document, develops audit observation results and communicates audit findings to management and vendor in well written reports




• Manages follow-up on open audit issues and facilitate agreements with business process owners to ensure timely closure of action plans




• Performs other external audit related duties as assigned or as the situation requires

Qualifications/Skills:

• 1-3 years of experience in IT internal controls related specifically to Infrastructure, Applications, Operating Systems and/or Database security is preferred




• Experience working directly with all versions of SOC, ISO27001 and/or PCI-DSS requirements is preferred




• Strong professional presence, able to represent the organization professionally




• The ideal candidate will have a broad base of experience in multiple areas of IT




• Excellent verbal and written communication skills required




• Ability to effectively interact and relate to personnel at all levels of an organization




• Strong analytical, organizational, and problem-solving skills




• Exceptional attention to detail




• Ability to prioritize and manage multiple projects simultaneously




• Ability to employ intuition and analytical skills, and interpret information, to identify potential process breakdowns and their potential impact




• Punctual, dependable and accountable




• Ability to work in a high volume, deadline driven environment, while ensuring compliance with all internal policies and procedures




• Proficient in a Windows environment, with a working knowledge of Microsoft Office (Word, Excel, Access, etc.) and SQL is a plus




• Self-motivated, the ability to work successfully independently and/or within a team environment




• Travel will be required (up to 25%) – Domestic only

Educational Requirements:

• Related college degree, will consider the equivalent combination of job experience and education that demonstrates the ability to perform the essential functions of this position




• CISA or other relevant certifications a plus but not required

We would be honored if you applied to join our team! We are an equal opportunity employer,offering a fantastic work environment, challenging career opportunities and competitive compensation.