IT Audit Trainer

Seeking IT Audit Trainer knowledge in security, IT risks, data integrity controls, effective speaking skills and answering question for employees. Interview: SkypeLocation: Columbus, OHPosting: 681647Work On-Site Role and Experience

• IT audit training for employees.
• IT Risk Assessment - how to assist client in developing and maintaining a risk assessment tool over their IT assets and functions (following NIST standards)
• Data integrity controls and how to test them (e.g., when data is transferred from one system to another, what are the controls to make sure the data is complete and accurate and how to test those controls)
• Training on how to test encryption controls
• Training over how to conduct audits over Open Web Application Security Project (OWASP) top 10 critical web application security risks. Specifically looking at coding withing applications and the security within those applications, more for in-house applications rather than vendor specific.
• Third party security – how to identify and test controls that agencies should have to monitor vendor's security with their data (and not just using a SOC-1 report); this could also relate to Identifying and testing of controls around agency's use of cloud vendors and the related security of the data
• Identification and testing of IT controls established to prevent ransomware attacks
• Differences between versions 4 and 5 of the National Institute of Standards and Technology (NIST) Special Publication 800-53 and what auditors should be aware of in identifying and testing those security controls
• Knowledge of IT audit, security, IT risks, data integrity controls, effective speaking skills
• Certifications: CISA, CISSP
• Nice To Have Skills: Social skills to answer questions