Contributor Information Security-Governance and Risk

Looking for a candidate to join the Sabre Information Security Governance, Risk & Compliance team.  This role will have an active role in planning and facilitating the annual SOC 1 & 2 audits for Sabre business units, in partnership with Sabre’s third-party audit firm.  Responsibilities include audit planning, scoping, preparation and oversight of the testing and remediation activities, and working with the third-party audit firm to prepare the SOC reports and accompanying documentation. 

Our ideal candidate will possess a thorough knowledge of accounting procedures, a commitment to excellence, and a sound, data-driven sense of judgement. A deep commitment to compliance with all applicable directives and regulations are a must as well.

Responsibilities
•    Excellent communication and presentation skills needed to present reports that reflect audit results and document the process.
•   Participates in all audit activities relating to SSAE-16 SOC 1 & 2 audits ensuring work and deliverables in accordance with agreed upon timeframes and departmental procedures, standards, and protocols
•    Partners cross-functionally, inter-departmentally and with the external auditor to understand the process from an end-to-end perspective and appropriately and effectively communicates with these partners to understand the status for Sabre as a whole.
•    Ensures frequent communication of test and/or audit results and analysis on a timely basis to the appropriate stakeholders and senior management.
•    Participates in meetings with business unit to discuss test and/or audit scoping, testing progress and results
•    Participate in the completion of customer questionnaires, RFP’s and inquiries as needed.

Education:
•    Bachelor’s Degree in Computer Science, Information Technology Management, Accounting, Finance or other technical discipline, or equivalent.

Required Skills:
•    Experience with SOC 1 & 2 work is a plus.
•    Strong working knowledge of SOC reporting standards, types, methodologies, documentation and control testing.
•    Ability to work effectively in a customer service / team-oriented environment.
•    Demonstrated understanding of cyber security risk management concepts, cybersecurity frameworks, secure coding principles, and security technologies.
•    Ability to learn industry standards
•    Proficient in preparation of reports, dashboards and documentation.
•    Excellent critical thinking and problem-solving skills
•    Excellent written and verbal communication skills.
•    Excellent organization skills. Strong organizational and project management skills
•    High degree of aptitude regarding attention to detail and excellent analytical skills.

#LI-DA1