• Perform site assessments of services facilities, which conduct workflows at physical premises, including commercial and residential scenarios. 

• Drive client security through knowledge of security protocols and demonstrating responsible cybersecurity practices, including risk management, control implementation, ISMS implementation, and business continuity management, among other topics, to build a stronger overall security posture. 

• Conduct meetings with clients and clients’ vendors’ employees, while addressing the vendors’ security policies, workflow, physical, and digital security parameters. 

• Create audit plans to test key controls and verify compliance. Assess the severity of identified weakness and the impact of the risk involved. 

• Identify security gaps based on Motion Pictures Association (MPA) Best Practices and other best practice and standard bodies, understand any underlining causes or related impact, and how to address them. 

• Document and present audit findings, observations, and conclusions to internal and external stakeholders. 

• Evaluate and develop recommendations to ensure vendors compliance with industry best practices. 

• Collaborate with leadership to develop adjustments to existing policies and practices in order to address gaps within business processes and within the audit process.  

• Ensure completion of the project within the agreed-upon level of effort and time frame. 

Must Haves: 

• One year of experience within the last four years in Media & Entertainment industry audit experience. 

• Reside in Los Angeles, California metro area

• Knowledge of security audit frameworks, practices, tools, and techniques. 

• Auditors should possess analytical and technical knowledge together with interviewing, interpersonal and presentation skills. 

• Experience with Motion Picture Associaton (MPA) Best Practices and how they are integrated in vendor locations. 

• Minimum of two years of experience conducting IT audits covering Content Security, Cyber Security, Information Security, and/or Information Systems. 

• At least one active information security, cybersecurity, and/or IT audit certification below. 

• • CompTIA  

• • • Security+ 

    • CASP+ 

• • • PenTest+ 

• • EC-Council 

• • • CEH 

• • GIAC 

• • • GSEC 

• • • GISF 

    • GWAPT 

    • GISP 

• • ISACA 

• • • CISA 

    • CISM 

    • CRISC 

    • CGEIT 

    • CDPSE 

• • • CSX-P 

• • ISC2 

• • • CISSP 

• • PECB 

• • • ISO 27001 Certified Auditor 

What you bring to the table:   

• Experience reading and illustrating architecture and network diagrams. 

• Understanding of the principals of information security policies, business continuity plans, and industry control requirements as they pertain to the security of the content. 

• Ability to identify gaps and develop recommendations around operations, policy management, and physical and digital security. 

• Knowledge of compensating controls or alternatives due to restraints such a budget, employment, nature of content, etc. 

• Strong writing, communication, logistics/time management, professionalism. 

• Ability to travel internationally. 

What we bring to the table:    

• Check out www.ise.io/careers for full details

• Work that matters; projects that impact people’s everyday life and wellbeing

• Quality, integrity, dedication, and education: our core values. 

• Life balance: flexible schedule and unlimited vacation 

• Work from home option 

• $0 health premium plan option, including spouse and family.   

• Opportunities to research and publish, speak at major security events and conferences. 

• Leadership and peers that support and mentor you: your growth is our growth, your success is our success. 

• Relaxed and fun environment: ditch the suit and tie, sit or stand at your desk or find a sofa.