Pay Growth
?
out of 5
Not enough data
Not enough info to score pay or growth
Info Systems Audit Associate II
Job
Sempra
San Diego, CA (In Person)
$106,000 Salary, Full-Time
Review key factors to help you decide if the role fits your goals.
Job Security
?
out of 5
Not enough data
Calculating job security score...
Total Score
73
out of 100
Average of individual scores
Skill Insights
Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.
Job Description
Info Systems Audit Associate II Sempra
- 4.0 San Diego, CA Job Details $82,000
- $130,000 a year 3 hours ago Qualifications Risk management compliance audits Audit report preparation Information security audit implementation Security risk assessment investigation IT system monitoring Security architecture review Technical report writing Information security compliance Security testing methodologies Fraud detection IT control testing Internal audit control reports Regulatory compliance analysis Security processes improvement Information security auditing Data analysis software System performance monitoring IT security monitoring
Full Job Description Sempra:
Where opportunity powers impact At Sempra, a better world begins with better energy—and with people who want to make a difference. That's why we're tackling the biggest challenges facing our industry while building ahigh‑performance culture where you can do your best work. Together, our teams support nearly 40 million consumers across the U.S., strengthening the communities we serve and creating impact that extends far beyond the workplace. Here, collaboration, inclusivity and shared purpose empowers you to grow your passion, build a rewarding career and contribute to something bigger—helping shape a better energy future for all. Primary Purpose The role primarily focuses on conducting comprehensive internal audits of IT systems with an emphasis on evaluating cybersecurity risks. By collaborating with cross-functional teams, the role will address key vulnerabilities, assess control mechanisms, and contribute to the overall strengthening of IT security frameworks and risk mitigation strategies. The position executes a broad range of testing and analysis for information systems audits. It recommends practical adjustments to test steps, communicate routine issues to stakeholders, and contribute to reporting. Duties and Responsibilities Performs control testing for application, technology, and operations processes and evaluates whether evidence meets defined criteria. Proposes refinements to test procedures when populations or tools differ from plan while maintaining methodological compliance. Analyzes privileged access, security configuration hardening, logging and other cybersecurity control artifacts to identify exceptions and potential impact. Summarizes testing results and drafts preliminary observations that link criteria, condition, cause, and effect. Coordinates with technology teams to obtain extracts or configuration exports required for sampling and analysis. Participates in entrance and exit meetings, explaining straightforward procedures and conclusions. Contributes to follow‑up reviews by confirming remediation activities and gathering validation evidence. Performs other duties as assigned.Requirements:
Education Typically requires a 4-year degree in a relevant field, or equivalent combination of relevant education and experience. Experience Typically requires 2 years of related experience. Must reside in Southern California or be willing to relocate upon hire. Skills and Abilities IT Audit Methodologies- Proficiency in applying structured approaches and methodologies for conducting IT audits, ensuring thorough evaluation of systems and controls. Risk Assessment Techniques
- Expertise in identifying and assessing risks associated with information systems, and developing strategies to mitigate these risks. Information Security Standards
- Understanding of industry standards and frameworks such as ISO 27001, NIST, and COBIT for evaluating and improving information security practices. Data Analytics Tools
- Proficiency in using data analysis tools to examine large datasets for patterns and anomalies that may indicate fraudulent activity. Network Security Assessment
- Ability to evaluate and assess network security controls, identifying vulnerabilities and recommending improvements to protect information assets. Cybersecurity Fundamentals
- Knowledge of cybersecurity principles and practices to assess the effectiveness of security measures and protect against digital threats. System and Application Controls
- Expertise in evaluating system and application controls to ensure accuracy, reliability, and security of data processing and information flows. Regulatory Compliance
- Ensuring an organization's adherence to laws, regulations, guidelines and specifications relevant to its business processes. Report Writing and Documentation
- Skill in preparing detailed reports and documentation of fraud investigations and prevention activities for stakeholders. Continuous Monitoring Tools
- Proficiency in implementing and utilizing continuous monitoring tools to track system performance and detect potential security breaches in real time.