Security and Exchange Commission OIG – FISMA Audit Project
IT security auditor for the Securities and Exchange Commission Office of the Inspector General (SEC OIG) with responsibility to audit the Commission’s information systems, programs, contracts operations and program participants. Responsible to review available information assurance guidelines, regulations, and directives from various sources and command levels, and recommend appropriate changes as needed. Develop recommendations for deploying information security program requirements, policies, and procedures to safeguard sensitive information processed within the SEC OIG information system accreditation environment. Perform surveys of organizational units to be audited. Review audit program for assigned area and proceed with examinations, tests and analysis. Survey technical, operational and management aspects of the OIG’s information systems in accordance with Office of Budget and Management (OMB) FISMA reporting requirements. Evaluate configuration of hardware and software platforms, remote access architecture, identity and access management, and security training and configuration compliance requirements. Prepare and maintain accurate work papers, document audit work performed and record collected audit data.