Information Security Engineer II

Through our dedicated associates, Conduent delivers mission-critical services and solutions on behalf of Fortune 100 companies and over 500 governments, creating exceptional outcomes for our clients and the millions of people who rely on them. Join us to thrive personally, make a difference, and be part of a culture that values individuality every day.

The ISO Auditor is part of the CISO Regulatory & Compliance Team, assisting with internal audits to ensure compliance with Conduent and ISO security standards, regulations, and policies. The auditor will act professionally, independently, impartially, and fairly in all interactions.

1. Security Procedures and Processes: Ensure the integrity, confidentiality, and availability of information, applications, and infrastructure within assigned business units.
2. Risk Assessments and Audits: Conduct routine risk assessments, security audits, and vulnerability scans to identify and remediate risks, control gaps, and vulnerabilities.
3. Reporting and Policies: Develop security reports, recommendations, and policies that are meaningful and actionable for various audiences.
4. Log Management: Collect, correlate, review, archive, and monitor security logs and alerts, including IPS/IDS, application firewalls, malware, rogue networks, and system health.
5. Audit and Compliance: Participate in audits to ensure compliance with security frameworks like NIST 800-53, ISO 27001/2, PCI-DSS, and relevant privacy laws.
6. Vulnerability Management: Manage external and internal vulnerability scans, penetration tests, and remediation efforts.
7. Incident Response and Improvement: Coordinate with teams for incident handling, remediation, and security improvements.
8. Business Continuity: Support the creation and testing of disaster recovery plans and maintain relevant documentation.

1. Security/IT audit certifications (CISA, CISSP, CISM, ISO, CRISC) are a plus.
2. 4-5 years of experience in IT security or security auditing.
3. Knowledge of security controls across domains such as access management, encryption, vulnerability management, network security, physical security, etc.
4. Ability to identify and assess security risks and recommend controls.
5. Understanding of security technologies and threats.
6. Experience in developing security reports, policies, and procedures.
7. Familiarity with security frameworks like NIST, ISO, PCI DSS, HIPAA, HITRUST, FISMA, FedRAMP.
8. Proficiency in MS Office tools; experience with Nessus, Splunk, SharePoint, and ServiceNow is a plus.
9. Strong communication skills and the ability to work independently and collaboratively.

• Experience creating and maintaining NIST 800-53 SSP and POAM.
• Knowledge of multiple security frameworks.

Remote work option, allowing flexibility and work-life balance.

• Health, welfare, and retirement benefits.
• Career growth opportunities within a global organization.
• Paid time off and a positive, inclusive work culture.

At Conduent, we foster a culture of authenticity, growth, and making a difference. We offer a global team environment with over 60,000 associates across 24 countries, committed to your professional and personal development.

Note: Salary range is $76,076 - $98,800, with additional benefits and potential bonuses. Conduent is an Equal Opportunity Employer and provides accommodations for applicants with disabilities.