Cybersecurity Auditor

Location: Mumbai/
Pune/ Hyderabad

Title: Cybersecurity Auditor

Position Summary:

The global Governance, Risk and
Assurance team is responsible for maintaining compliance with enterprise
cybersecurity control frameworks, policies and procedures. The team is part of
the global Cybersecurity Engineering and Assurance organization at Cornerstone
OnDemand.

The Cybersecurity Auditor is a critical
role in supporting the overall strategy and vision of the Cybersecurity
Engineering & Assurance team, and reports into the Associate Director of Cybersecurity
& Assurance.

In this role, you will

Responsible for performing internal
audits, enabling cyber certifications and external audits, managing cyber risk
and ensuring continued assurance with the company's compliance frameworks.
Activities include working with cross-functional teams to improve the maturity and
effectiveness of cybersecurity controls, executing internal audits, keeping policies and operating procedures
up-to-date, responding to customer assessments, and producing metrics,
scorecards, reports and dashboards periodically.

Perform cybersecurity audits and risk
assessments in all areas of the organization in line with the global
Internal Audit Program's objectives

Document audit procedures, recommend
remediation plans and liaise independently with stakeholders to validate
implementation

Work with functional owners to ensure control
objectives and activities meet compliance standards for effectiveness and assurance
evidence
Publish and present timely and high-quality audit
reports
Partner with leaders
across business functions such as Engineering,
Cloud Operations, Privacy, Product and Customer Success to implement effective cybersecurity controls
Identify emerging cybersecurity and information technology risks, evaluate internal controls to treat risks, and develop opportunities to continuously uplift control frameworks
Work with Cornerstone's external partners and
cross functional teams to schedule appropriate internal audit testing
and/or risk assessments.
Perform formal reviews of new technologies,
initiatives and strategic projects against the company's cybersecurity
requirements
Recommend updates to cybersecurity policies, standards
and operating procedures to address new industry practices, requirements
and regulations
Illustrate ownership and accountability and ensure
operational efficiency

You've Got What It Takes If You

Degree in
Information Technology, Computer Science, Cybersecurity or related fields
CISA,
CRISC, CISSP and/or ISO 27001 LA/LI desired
1y - 3y total
years of experience in cybersecurity, compliance, IT audits and/or cyber risk
management
Hands-on
expertise in industry-standard cybersecurity assurance standards (e.g.,
SOC 2, ISO 27k, NIST, PCI DSS, etc.), trends and best practices
Experience in auditing general and automated controls, including but not limited to logical security, physical security, change and problem management, data backup, disaster recovery and incident management
Knowledge of security tools, technologies and control best practices for domains such as IAM, encryption, system hardening, anti-malware, data leakage prevention, NIDPS, network security and vulnerability management
Hands-on exposure to auditing and/or securing
leading cloud PaaS technologies platforms such as AWS, Google Cloud and
Microsoft Azure
Proficient in Word, Excel, PowerPoint and other
Microsoft 365 tools
Mature data
analysis, documentation, articulation and presentation skills
Ability
to communicate effectively with stakeholders across global regions and
organizational levels
Ability to work autonomously with flexibility and excellent
judgment
Ability to work effectively under pressure to meet deadlines
Ability to solve problems quickly and automate processes
Ability to work cooperatively as part of a team

#LI-Hybrid

Our Culture:

Spark Greatness. Shatter Boundaries. Share Success. Are you ready? Because here, right now – is where the future of work is happening. Where curious disruptors and change innovators like you are helping communities and customers enable everyone – anywhere – to learn, grow and advance. To be better tomorrow than they are today.  

Who We Are:

Cornerstone powers the potential of organizations and their people to thrive in a changing world. Cornerstone Galaxy, the complete AI-powered workforce agility platform, meets organizations where they are. With Galaxy, organizations can identify skills gaps and development opportunities, retain and engage top talent, and provide multimodal learning experiences to meet the diverse needs of the modern workforce. More than 7,000 organizations and 100 million+ users in 180+ countries and in nearly 50 languages use Cornerstone Galaxy to build high-performing, future-ready organizations and people today.

Check us out on LinkedIn, Comparably, Glassdoor, and Facebook