Senior IT Auditor- IT & Cyber
About the role
Lead and execute IT and cybersecurity audits with a focus on cloud, AI, and modern technology risks. Develop an understanding of technology environments, business processes, and associated risks and controls. Plan audit scope through process analysis, risk assessment, and control identification. Evaluate cybersecurity governance, cloud security, identity access management, infrastructure security, and data protection controls. Execute audit testing and maintain high-quality, well-documented workpapers. Translate technical findings into clear, actionable business insights and recommendations. Communicate effectively with stakeholders across Cyber, Technology, Data, and Product teams. Track and validate remediation efforts to ensure sustainable control improvements.
Responsibilities
- Lead and execute IT and cybersecurity audits with a focus on cloud, AI, and modern technology risks
- Develop an understanding of technology environments, business processes, and associated risks and controls
- Plan audit scope through process analysis, risk assessment, and control identification
- Evaluate cybersecurity governance, cloud security, identity access management, infrastructure security, and data protection controls
- Execute audit testing and maintain high-quality, well-documented workpapers
- Translate technical findings into clear, actionable business insights and recommendations
- Communicate effectively with stakeholders across Cyber, Technology, Data, and Product teams
- Track and validate remediation efforts to ensure sustainable control improvements
Requirements
- Minimum of 3 years of experience in a Big 4 firm or global organization in IT audit, cybersecurity, risk, or controls
- Strong understanding of IT and cybersecurity risk management, controls, and governance frameworks (e.g., NIST, ISO, COBIT, COSO)
- Experience auditing cloud environments (AWS, Azure, SaaS) including security architecture, configurations, and access controls
- Knowledge of identity and access management (IAM, PAM, SSO, MFA) and privileged access oversight
- Understanding of secure development practices (SDLC, Agile, DevOps, DevSecOps) and application security controls
- Experience using data analytics tools (e.g., Excel, Power BI, Tableau) to support audit testing and insights
- Strong analytical, critical thinking, and communication skills with the ability to translate technical findings into business insights
- Demonstrated proficiency in artificial intelligence concepts, with hands-on experience using AI tools to streamline workflows and enhance operational efficiency. Proven ability to implement AI-powered solutions to solve business challenges. Demonstrates a growing awareness of AI risk management and a commitment to responsible and ethical AI use
Qualifications
- Bachelor’s degree required in cybersecurity, computer science, computer engineering, information technology, information systems, or a related field
- Professional certifications such as CISSP, CISA, or equivalent are preferred
Skills
- Strong analytical, critical thinking, and communication skills
- Hands-on experience using AI tools to streamline workflows and enhance operational efficiency
- Proven ability to implement AI-powered solutions to solve business challenges
- Growing awareness of AI risk management and a commitment to responsible and ethical AI use
Benefits
- Competitive benefits package including medical, dental, vision, parental leave, paid time off, a 401(k) plan with employee and company contribution opportunities, life, disability, and accident insurance, a discounted employee stock purchase plan, and tuition reimbursement
Pay
The anticipated hiring base salary range for this position is $82,400.00 - $119,450.00, depending on factors such as experience, education, level, skills, and location. This range is based on a full-time position. In addition to base salary, this role is eligible for incentive compensation.
Schedule
Full-time