Experience Inc. Jobs

Battelle delivers when others can’t. We conduct research and development, manage national laboratories, design and manufacture products and deliver critical services for our clients—whether they are a multi-national corporation, a small start-up or a government agency.

We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply.

Job Summary

Oversees and executes information technology (IT) and information security (IS) audits and leads less experienced auditors in the conduct of various audits projects. Audit areas may include all aspects of IT operations; compliance with policies and regulations; safeguarding of assets; and identification of any irregularities, fraud, and other acts that pose significant risks to Battelle. Reviews work performed by Information Security Auditors and contributes to significant projects.

Responsibilities

• Performs data-driven risk assessments of the organization, systems, and processes to identify existing or emerging IT or IS risk areas which could impact operations, financial performance, or reputation. Provides direct guidance to less experienced auditors assigned to perform risk assessments.

• Works with the Audit team to plan, conduct and/or oversee IT, IS, operational and compliance related internal audits and assessments with a focus on identifying potential control gaps and process weaknesses and developing recommended action plans.

• Oversees walkthroughs, reviews documentation, and analyzes system configurations to gain a comprehensive understanding of IT systems design and architecture. Uses this understanding to document process flows or other workpapers that would aid in explaining complex system processes, controls, and weaknesses to others at varying levels of technical IT knowledge; and to identify risks and gaps in system architecture, configuration, processes, and controls.

• Plans, conducts, or oversees reviews of internal policies, procedures, system design and functionality to evaluate compliance with state and laws and government regulations (e.g., DFARS 252.204-7012, NIST 800-171, NIST 800-53, HIPAA, GDPR, etc.).

• Oversees the assessment and identification of application, system, and process vulnerabilities which could impact the security of systems or data.

• Oversees the coordination, scoping, analysis, and reporting of vulnerability assessments and penetration tests.

Responsibilities

• Reviews work papers of audit staff working under their direction on a given audit. Provides comments and feedback as to the adequacy of the audit work performed, documentation included in work papers and conclusions reached.

• Performs first level review of audit work performed by Information Security Auditors to assess completeness and consistency with audit expectations and quality requirements. Provides guidance and mentorship to less experienced auditors.

• Prepares or reviews draft audit reports.

• Conducts special reviews and projects as requested by management and/or the Audit Committee of the Board of Directors.

• Collaborates with Internal Audit SMEs in the conduct of investigations.

• Leads annual IT risk assessment process and its use in creating the IT audit plan.

• Participates in select steering committees/working groups for significant projects to help ensure IT control considerations are included early and frequently throughout the duration of the project.

• Builds relationships with key stakeholders across various functions to remain knowledgeable of developments across the organization and ensure recommendations and action items resulting from reviews are implemented.

• Supports the accomplishment of Internal Audit’s strategic goals and objectives

Key Qualifications

• Bachelor's degree in Management Information Systems, Computer Science, Information Technology, Accounting or Finance; eight years of information technology or information security experience; or an equivalent combination of education and/or experience in a related field.

• Department of Defense Secret clearance or the ability to obtain one.

• Familiarity with professional security frameworks and standards (COSO, COBIT, NIST, ISO 27001, PCI-DSS, CIS Critical Security Controls, DFARS, etc.).

• Familiarity with a variety of operating systems (Windows, Linux), technologies (cloud computing, active directory, security information and event management, etc.); or functions (identity and access management, vulnerability management, incident response, business continuity, disaster recovery, systems administration, change management, etc.) with expertise in at least one area.

• Hands on information technology or information security administration, operations, or engineering experience

• Strong verbal and written communication skills.

• Ability to work independently.

• Comfortable working in a team environment.

• Strong analytical and problem-solving skills.

• Strong awareness of current cyber security and hacking trends with a commitment to continuous learning to stay current regarding applicable strategies and regulatory and legal requirements.

Preferred Qualifications

• Prior experience risk advisory and internal controls.

• Familiarity with auditing standards (IPPF, Generally Accepted Auditing Standards, etc.)

• Professional certification (CISA, CISSP, CIA, etc.) or progress toward certification preferred.

• Working knowledge and understanding of professional security frameworks and standards (COSO, COBIT, NIST, ISO 27001, PCIDSS, CIS Critical Security Controls, DFARS, etc.)

• Experience developing strategies and methodologies for utilizing data analytics in an audit environment.

• Working knowledge of Excel, Word, Access, and/or Visio.

Benefits: Live an Extraordinary Life

We care about your well-being, not just on the job. Battelle offers comprehensive and competitive benefits to help you live your best life.

• Balance life through a compressed work schedule : Most of our team follows a flexible, compressed work schedule that allows for every other Friday off—giving you a dedicated day to accomplish things in your personal life without using vacation time.

• Take time to recharge : You get paid time off to support work-life balance and keep motivated.

• Prioritize wellness : Stay healthy with medical, dental, and vision coverage with wellness incentives and benefits plus a variety of optional supplemental benefits.

• Better together : Coverage for partners, gender-affirming care and health support, and family formation support.

• Build your financial future : Build financial stability with an industry-leading 401(k) retirement savings plan. For most employees, we put in 5 percent whether you contribute or not, and match your contributions on top of that.

• Advance your education : Tuition assistance is available to pursue higher education.

• Flexible work arrangements : You have options for where you work and when you work.

A Work Environment Where You Succeed

For brilliant minds in science, technology, engineering and business operations, Battelle is the place to do the greatest good by solving humanity’s most pressing challenges and creating a safer, healthier and more secure world.

You will have the opportunity to thrive in a culture that inspires you to:

• Apply your talent to challenging and meaningful projects

• Receive select funding to pursue ideas in scientific and technological discovery

• Collaborate with world-class experts in an inclusive environment

• Nurture and develop the next generation of scientific leaders

• Give back to and improve our communities

Vaccinations & Safety Protocols

Battelle may require employees, based on job duties, work location, and/or its clients’ requirements to follow certain safety protocols and to be vaccinated against a variety of viruses, bacteria, and diseases as a condition of employment and continued employment and to provide documentation that they are fully vaccinated. If applicable, Battelle will provide reasonable accommodations based on a qualified disability or medical condition through the Americans with Disabilities Act or the Rehabilitation Act or for a sincerely held religious belief under Title VII of the Civil Rights Act of 1964 (and related state laws).

Battelle is an equal opportunity employer. We provide employment and opportunities for advancement, compensation, training, and growth according to individual merit, without regard to race, color, religion, sex (including pregnancy), national origin, sexual orientation, gender identity or expression, marital status, age, genetic information, disability, veteran-status veteran or military status, or any other characteristic protected under applicable Federal, state, or local law. Our goal is for each staff member to have the opportunity to grow to the limits of their abilities and to achieve personal and organizational objectives. We will support positive programs for equal treatment of all staff and full utilization of all qualified employees at all levels within Battelle.

The above statements are intended to describe the nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, activities and skills required of staff members. No statement herein is intended to imply any authorities to commit Battelle unless special written permission is granted by Battelle's Legal Department.

For more information about our other openings, please visit www.battelle.org/careers