Job Summary: RSM is seeking two experienced Cyber Internal Auditors at the Manager/Supervisor level to join their Audit team for a critical "Airgap Audit" project. The successful candidates will be responsible for evaluating the effectiveness of security controls and risk management processes related to isolated backup/recovery tools and secure data restoration practices within the bank's airgapped infrastructure.
Responsibilities:
Conduct a comprehensive audit of airgapped infrastructure, focusing on the security controls and processes surrounding isolated backups, recovery tools, and secure data restoration.
Assess the adequacy and effectiveness of existing controls and procedures to ensure the confidentiality, integrity, and availability of sensitive data within the airgapped environment.
Evaluate the implementation and maintenance of network segregation controls to prevent unauthorized access to the airgapped infrastructure.
Review and analyze the bank's policies, procedures, and standards related to airgapped infrastructure, backup/recovery processes, and data restoration practices.
Identify potential risks, vulnerabilities, and control gaps within the audited areas and provide recommendations for improvement.
Collaborate with IT and Security teams to understand the technical aspects of the airgapped infrastructure and gather relevant evidence to support audit findings.
Document audit observations, findings, and recommendations in a clear and concise manner, adhering to established work paper formats and industry best practices.
Present audit results and recommendations to relevant stakeholders, including senior management and the Audit Committee.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

Required Skills & Experience

Minimum of 5 years of experience in IT auditing or cybersecurity, with a focus on financial services
Knowledge of relevant industry standards, regulations, and best practices related to cybersecurity and risk management in the banking sector.
Proficiency in using auditing tools and techniques, including data analysis, sampling, and testing methodologies.
In-depth knowledge of security concepts and best practices related to air gapped infrastructures, isolated backups, secure data restoration, and network segregation

Nice to Have Skills & Experience

Prior experience in auditing or performing risk/control assessments for airgapped infrastructures or related security concepts is strongly preferred.
Relevant professional certifications (e.g., CISA, CISSP, CISM) are highly desirable.
Familiarity with backup and recovery tools commonly used in enterprise environments, such as Rubrik (preferred).
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.