Senior IT Auditor
hackajob · Charlotte, NC · 3 wk ago
On-siteInformation Technology$82k/yrFull-time
Skills and Competencies
- Minimum of 3 years of experience in a Big 4 firm or global organization in IT audit, cybersecurity, risk, or controls
- Strong understanding of IT and cybersecurity risk management, controls, and governance frameworks (e.g., NIST, ISO, COBIT, COSO)
- Experience auditing cloud environments (AWS, Azure, SaaS) including security architecture, configurations, and access controls
- Knowledge of identity and access management (IAM, PAM, SSO, MFA) and privileged access oversight
- Familiarity with network, endpoint, infrastructure security, and vulnerability and patch management processes
- Understanding of secure development practices (SDLC, Agile, DevOps, DevSecOps) and application security controls
- Experience evaluating data governance and protection practices including encryption, classification, and data loss prevention
- Absence of experience assessing resilience, disaster recovery, and ransomware recovery readiness
- Strong analytical, critical thinking, and problem-solving skills with the ability to translate technical findings into business insights
- Effective written and verbal communication skills, with the ability to influence stakeholders
- Experience using data analytics tools (e.g., Excel, Power BI, Tableau) to support audit testing and insights
- Proficiency in Microsoft Office and exposure to GenAI and AI-driven tools (e.g., Microsoft Copilot)
- Ability to manage multiple priorities in a fast-paced, collaborative environment
- Bachelor’s degree required in cybersecurity, computer science, computer engineering, information technology, information systems, or a related field
- Professional certifications such as CISSP, CISA, or equivalent are preferred
Responsibilities
- Lead and execute IT and cybersecurity audits with a focus on emerging risks including cloud, AI, and modern technology practices
- Develop a deep understanding of technology environments, business processes, and associated risks and controls
- Plan audit scope through process analysis, risk assessment, and control identification
- Evaluate cybersecurity governance, cloud security, identity access management, infrastructure security, and data protection controls
- Assess vulnerability management, secure development practices, and system change management processes
- Execute audit testing and maintain high-quality, well-documented workpapers
- Translate technical findings into clear, actionable business insights and recommendations
- Communicate effectively with stakeholders across Cyber, Technology, Data, and Product teams
- Draft audit observations, articulate risk impacts, and support remediation efforts
- Track and validate remediation activities to ensure effective and sustainable control improvements
- Build strong stakeholder relationships and incorporate business objectives into audit execution
- Leverage data analytics and automation tools to enhance audit efficiency and continuous monitoring
Qualifications
- Bachelor’s degree required in cybersecurity, computer science, computer engineering, information technology, information systems, or a related field
- Professional certifications such as CISSP, CISA, or equivalent are preferred
Benefits
- The anticipated hiring base salary range for this position is $82,400.00 - $119,450.00, depending on factors such as experience, education, level, skills, and location.
- This role is eligible for incentive compensation.
- Moody's also offers a competitive benefits package, including not but limited to medical, dental, vision, parental leave, paid time off, a 401(k) plan with employee and company contribution opportunities, life, disability, and accident insurance, a discounted employee stock purchase plan, and tuition reimbursement.
Pay and Schedule
- Base salary range: $82,400.00 - $119,450.00
- Eligible for incentive compensation
Benefits
- Medical, dental, vision, parental leave, paid time off
- 401(k) plan with employee and company contribution opportunities
- Life, disability, and accident insurance
- Discounted employee stock purchase plan
- Tuition reimbursement