Internal Auditor (GRC)

As an Internal Auditor at Fortra, your main responsibilities include preparing and executing internal compliance audit engagements, participating in stakeholder interviews, organizing audit evidence, and advising on technology and security standards. You’ll be integral in ensuring our products meet required compliance standards such as SOC 2, PCI, ISO 27001, and FedRAMP.

For the Internal Auditor position at Fortra, a Bachelor’s degree in Computer Science, Cybersecurity, or related fields is required. Candidates should also have at least two years of direct experience in internal or IT audit consulting, alongside knowledge of security frameworks such as SOC 2, PCI, and ISO.

Essential skills for the Internal Auditor role at Fortra include excellent analytical abilities, strong communication skills, proficiency in collaboration tools, and effective documentation practices. Familiarity with Microsoft 365 business applications and GRC tools is also highly valued.

Yes, the Internal Auditor position at Fortra is fully remote, allowing you the flexibility to work from anywhere in the United Kingdom while being a vital part of our innovative team.

Working at Fortra gives Internal Auditors the opportunity to be part of a diverse, global team that prioritizes innovation and collaboration. The company's commitment to professional development, competitive benefits, and a supportive culture makes it a great place to build your career in cybersecurity.

When discussing your experience with SOC 2 and PCI compliance, be sure to detail specific projects you’ve worked on, your role in ensuring compliance, and the outcome of those audits, emphasizing your attention to detail and problem-solving skills.

In your answer, outline the steps of an internal audit process, such as planning, execution, reporting, and follow-up. Highlight any experiences you have where you implemented these steps and any challenges you overcame.

Explain how you regularly engage with professional organizations, attend webinars, or participate in continuing education to stay current with compliance standards. Mention any certifications you hold that reflect your commitment to staying informed in this area.

Choose a specific instance from your experience where you identified a risk, detail how you discovered it, and explain the actions you took to remediate it. Focus on the skills you utilized and how it contributed to the organization’s compliance and overall security.

Discuss the GRC tools and software you’ve used, detailing how they've helped in your auditing processes. Provide examples of how you leveraged technology to enhance efficiency and accuracy in your auditing work.

Talk about your approach to address non-compliance, starting with assessing the situation, engaging with stakeholders to understand the root cause, and then developing a remediation plan that ensures future compliance.

Emphasize the importance of clear communication in every part of the auditing process, from initial meetings with stakeholders to presenting findings. Share examples of how strong communication has helped you in previous audit engagements.

Share your interest in cybersecurity and how Fortra's innovative approach aligns with your own values. Discuss what excites you about the company culture and how you believe you can contribute to its mission.

Describe strategies you utilize to meet tight deadlines, such as prioritization, time management, and team communication. Provide an example where you effectively managed a challenging timeline.

Highlight qualities such as analytical thinking, attention to detail, strong ethics, and a collaborative spirit. Use personal anecdotes that demonstrate how you embody these traits in your professional achievements.