IT Auditor - Artificial Intelligence & Adv Technology SME (Sr Staff)

About The Position

Requirements

• A minimum of 10 years of progressive experience in IT, cybersecurity, or systems engineering with demonstrated experience auditing, designing, or governing AI/ML solutions or emerging technologies (e.g., AI model‑risk management, AI‑enabled edge devices, quantum‑ready architectures), or 8 years with a  Master’s degree, or an equivalent combination of education and experience.
• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, Artificial Intelligence, or related field (or equivalent experience); or a Master’s degree in a related field with 8+ years of experience.
• Experience with AI and advanced technologies, including training, mentoring, and/or enabling others to effectively adopt and utilize these capabilities.
• Strong written and verbal communication skills, with the ability to convey complex or sensitive information clearly to both technical and non-technical audiences, including executive leadership.
• Experienced in building and maintaining effective working relationships with business leaders and technical stakeholders.
• Demonstrated ability to assess technical processes and workflows, identify associated business risks and impacts, and recommend practical, risk-based improvements.
• Proven business acumen, with experience working across cross-functional teams and influencing outcomes.
• US Citizenship is required for this role.

Nice To Haves

• AI/ML Governance: Demonstrated expertise and direct experience with advanced IT and AI/ML technologies, including evaluating ethical AI frameworks, managing model risk, ensuring data privacy, and mitigating algorithmic bias. Ability to promote awareness and share knowledge across teams.
• Leadership and Collaboration: Formal or informal leadership experience, with the ability to guide teams and build strong, trust-based relationships with business leaders and key stakeholders.
• Operating System Controls (e.g., Red Hat, Ubuntu, Windows, UNIX, ESXi, Kubernetes): Experience with assessing OS security configurations, patch management, and compliance with corporate security policies and Corporate Information Security Blueprints.
• Network Controls (Switches, Routers, Firewalls): Ability to assess network device hardening, segmentation, and firewall rule sets to ensure compliance with security standards.
• Application and Database Security: Experience with IT and cyber security evaluation of business applications and databases, including the review of application and database design / architectures, management procedures, and security controls to corporate security policies and regulations.
• Disaster Recovery (DR) and Business Continuity (BC): Experience assessing DR/BC planning plans, testing processes, and alignment with enterprise resiliency standards.
• IT Physical and Environmental Security: Skilled in evaluating data center, server room, and lab access controls, facility construction, power redundancy, fire suppression, temperature and humidity monitoring, and ensuring compliance with relevant standards.
• Experience with Lockheed Martin IT monitoring and analytics platforms, such as Attack Surface Monitoring & Reduction (ASMR), PassM, Splunk, Spectrum, and related tools.
• AI/ML‑related certifications and credentials (e.g., Microsoft AI 900 or AI 102, AWS Certified Machine Learning – Specialty, Prompt Engineering certifications such as DeepLearning.AI’s Prompt Engineering for AI Foundations, or comparable Coursera/edX AI specializations)
• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA), or Global Information Assurance Certification (GIAC) Security Leadership (GSLC)
• Certified Ethical Hacker (CEH), CompTIA Cybersecurity Analyst (CySA+/CSA+), or GIAC Systems and Network Auditor (GSNA)
• Certified Internal Auditor (CIA)

Responsibilities

• Perform audits in AI/ML and advanced technology domains.
• Stay aware of emerging technologies.
• Train and enable others within Internal Audit to understand and perform audits in these areas.
• Synthesize complex data and translate findings into clear, actionable business intelligence.
• Understand and communicate risk in clear, business-friendly language to stakeholders at all levels.
• Tailor processes and controls to the client’s environment and risk profile.
• Assess technical processes and workflows, identify associated business risks and impacts, and recommend practical, risk-based improvements.
• Align audit work with corporate strategies and proactively propose innovative audit scopes and approaches.
• Evaluate ethical AI frameworks, managing model risk, ensuring data privacy, and mitigating algorithmic bias.
• Assess OS security configurations, patch management, and compliance with corporate security policies and Corporate Information Security Blueprints.
• Assess network device hardening, segmentation, and firewall rule sets to ensure compliance with security standards.
• Evaluate IT and cyber security of business applications and databases, including review of design/architectures, management procedures, and security controls.
• Assess Disaster Recovery (DR) and Business Continuity (BC) planning plans, testing processes, and alignment with enterprise resiliency standards.
• Evaluate data center, server room, and lab access controls, facility construction, power redundancy, fire suppression, temperature and humidity monitoring, and ensuring compliance with relevant standards.

Benefits

• Medical
• Dental
• Vision
• Life Insurance
• Short-Term Disability
• Long-Term Disability
• 401(k) match
• Flexible Spending Accounts
• EAP
• Education Assistance
• Parental Leave
• Paid time off
• Holidays