NexCen Global Inc
2 days ago Be among the first 25 applicants
Direct message the job poster from NexCen Global Inc
Job Type : Contract | Hybrid (Onsite Tuesdays & Thursdays)
IT Security Auditor
Work Location : 1300 E Main St., Richmond, VA
Job Type : Contract | Hybrid (Onsite Tuesdays & Thursdays)
Job Overview
The
State Corporation Commission’s (SCC) Health Benefit Exchange Division
is seeking an experienced
IT Security Auditor
to support its transition to a new set of security standards and bolster third-party risk management efforts. The role requires
hybrid work , with mandatory
onsite presence every Tuesday and Thursday . Key Responsibilities
Evaluate existing security controls and processes in alignment with CMS, IRS, and SCC standards. Identify compliance gaps and recommend appropriate remediation actions. Lead the development and revision of security-related policies and procedures. Train internal teams and stakeholders on updated security practices. Create tools and workflows to assess and measure third-party security controls. Conduct security assessments of external vendors and partners. Test operational and management controls through interviews, documentation review, and observation. Document, report, and present audit findings, risks, and recommendations. Assist in continuous monitoring and incident response efforts. Perform other related duties as assigned. Required Skills & Experience
Minimum
8 years
of experience in audit, compliance, information security, or information technology. At least
4 years
of hands-on experience in
information security control audit and assessment . Strong familiarity with
NIST 800-53
or other major security frameworks. Proven ability to test, analyze, report, and develop remediation plans for operational and management controls. Experience in developing and maintaining policies, procedures, and technical documentation. Exposure to
healthcare ,
health insurance , or
ACA
compliance processes (preferred). Possession of industry certifications such as
CISA, CISSP, CIA, GSNA , or equivalent (preferred). Preferred Qualifications
Strong analytical, documentation, and communication skills. Experience evaluating vendor/partner security postures in complex environments. Familiarity with federal or state-level health data security requirements. Local candidates from
Richmond, VA
are highly preferred.
Seniority level
Seniority level Mid-Senior level Employment type
Employment type Full-time Job function
Job function Information Technology Referrals increase your chances of interviewing at NexCen Global Inc by 2x Get notified about new Security Auditor jobs in
Richmond, VA . IT Security Auditor - Richmond, VA – Hybrid
Richmond, VA $130,000.00-$170,000.00 6 days ago IT Security Auditor 3 - Both WEB AND IN PERSON IVS!
Information Systems Security Officer - Senior
Manager Cyber Technical, Technology Audit
Assistant Audit Director, Information Technology - IT - (HYBRID - Richmond, VA)
Principal Auditor (Experienced Senior Auditor), Corporate Compliance & Securities / Transactions Audits (Hybrid)
Need IT Security Auditor 3 - Local to Richmond, VA
Greater Richmond Region $120,000.00-$140,000.00 6 days ago INFORMATION SECURITY AND NETWORK SPECIALIST
Information Security Operations Analyst/Engineer
CISSP - Certified Information Systems Security Professional Tutor
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
The
State Corporation Commission’s (SCC) Health Benefit Exchange Division
is seeking an experienced
IT Security Auditor
to support its transition to a new set of security standards and bolster third-party risk management efforts. The role requires
hybrid work , with mandatory
onsite presence every Tuesday and Thursday . Key Responsibilities
Evaluate existing security controls and processes in alignment with CMS, IRS, and SCC standards. Identify compliance gaps and recommend appropriate remediation actions. Lead the development and revision of security-related policies and procedures. Train internal teams and stakeholders on updated security practices. Create tools and workflows to assess and measure third-party security controls. Conduct security assessments of external vendors and partners. Test operational and management controls through interviews, documentation review, and observation. Document, report, and present audit findings, risks, and recommendations. Assist in continuous monitoring and incident response efforts. Perform other related duties as assigned. Required Skills & Experience
Minimum
8 years
of experience in audit, compliance, information security, or information technology. At least
4 years
of hands-on experience in
information security control audit and assessment . Strong familiarity with
NIST 800-53
or other major security frameworks. Proven ability to test, analyze, report, and develop remediation plans for operational and management controls. Experience in developing and maintaining policies, procedures, and technical documentation. Exposure to
healthcare ,
health insurance , or
ACA
compliance processes (preferred). Possession of industry certifications such as
CISA, CISSP, CIA, GSNA , or equivalent (preferred). Preferred Qualifications
Strong analytical, documentation, and communication skills. Experience evaluating vendor/partner security postures in complex environments. Familiarity with federal or state-level health data security requirements. Local candidates from
Richmond, VA
are highly preferred.
Seniority level
Seniority level Mid-Senior level Employment type
Employment type Full-time Job function
Job function Information Technology Referrals increase your chances of interviewing at NexCen Global Inc by 2x Get notified about new Security Auditor jobs in
Richmond, VA . IT Security Auditor - Richmond, VA – Hybrid
Richmond, VA $130,000.00-$170,000.00 6 days ago IT Security Auditor 3 - Both WEB AND IN PERSON IVS!
Information Systems Security Officer - Senior
Manager Cyber Technical, Technology Audit
Assistant Audit Director, Information Technology - IT - (HYBRID - Richmond, VA)
Principal Auditor (Experienced Senior Auditor), Corporate Compliance & Securities / Transactions Audits (Hybrid)
Need IT Security Auditor 3 - Local to Richmond, VA
Greater Richmond Region $120,000.00-$140,000.00 6 days ago INFORMATION SECURITY AND NETWORK SPECIALIST
Information Security Operations Analyst/Engineer
CISSP - Certified Information Systems Security Professional Tutor
We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr