IT Auditor
ArnAmy, Inc.
Dice Job Match Score™
🧠 Analyzing your skills...
Job Details
Skills
- Auditing
- Business Continuity Planning
- COBIT
- Cloud Computing
- Cloud Security
- Collaboration
- Continuous Improvement
- Cyber Security
- Data Security
- Disaster Recovery
- Endpoint Protection
- Exceed
- HIPAA
- ISO/IEC 27001:2005
- Identity Management
- Incident Management
- Information Security
- Leadership
- Management
- Network Security
- PCI DSS
Summary
Job Purpose:
Responsibilities may include, but are not limited to:
1. Plan, execute, and report on IT and cybersecurity audits to assess the effectiveness of security controls, risk management practices, and compliance with policies and regulations
2. Evaluate the design and operating effectiveness of cybersecurity controls across areas such as identity and access management, network security, endpoint protection, cloud security, and data protection
3. Conduct risk assessments and control testing aligned to recognized frameworks (e.g., NIST CSF, ISO 27001, CIS Controls, COBIT)
4. Assess compliance with applicable regulatory and contractual requirements (e.g., SOX, PCI DSS, HIPAA, GDPR, SOC reports, internal policies)
5. Review vulnerability management, incident response, disaster recovery, and business continuity processes to ensure preparedness and resilience
6. Collaborate closely with GRC, and business stakeholders to understand systems, processes, and compliance
7. Identify control gaps, root causes, and risk implications, and develop clear, actionable audit findings and recommendations
8. Track and validate remediation efforts to ensure timely and effective resolution of audit issues
9. Support third-party risk assessments, including reviews of vendor security controls and SOC reports
10. Stay current on evolving regulatory changes, and industry best practices to continuously enhance audit approaches
11. Contribute to the continuous improvement of audit methodologies, tools, and automation techniques
12. Prepare and present audit results to management and, when required, senior leadership or audit committees.
The above job description and requirements are general in nature and may be subject to change based on the specific needs and requirements of the organization and project.
| Minimum Requirements: Candidates that do not meet or exceed the minimum stated requirements (skills/experience) will be displayed to customers but may not be chosen for this opportunity. | ||
| Years | Required/Preferred | Experience |
| 8 | Required | Plan, conduct, and document IT and cybersecurity audits in accordance with approved audit methodologies and professional standards. |
| 8 | Required | Evaluate the design and operating effectiveness of information security controls across systems, networks, applications, cloud environments, and data platforms. |
| 8 | Required | Assess cybersecurity risks and controls in alignment with recognized frameworks and standards |
| 8 | Required | Perform testing to assess compliance with applicable laws, regulations, contractual obligations, and internal policies. |
| 8 | Required | Review and assess processes related to identity and access management, vulnerability management, incident response, disaster recovery, and business continuity. |
| 8 | Required | Identify control deficiencies, assess risk impact, and develop clear, well-supported audit findings and recommendations. |
| 8 | Required | Prepare formal audit reports that communicate results, conclusions, and remediation requirements to management. |
| 8 | Required | Monitor, track, and validate management remediation plans to ensure timely and effective resolution of audit issues. |
| 8 | Required | Ability to resolve complex security issues in diverse and decentralized environments; to learn, communicate, and teach new information and security technologies; and to communicate effectively. |
| 8 | Required | Conduct forensic investigations on cyberattacks to determine how they occurred and how they can be prevented in the future. |
| 3 | Preferred | CISSP, PMP certifications |
- Dice Id: 10376147
- Position Id: A202603016
- Posted 3 days ago
Company Info
ArnAmy, Inc. is an Information Technology consulting and Software Development firm headquartered in Tallahassee, FL. We are IT professionals, driven by passion rather than revenue goals. We are the result of a sincere desire to provide exceptional service in the Information Technology (IT) industry. At ArnAmy, we understand that your business dictates your technology needs, not vice versa. With our proven track record, we have demonstrated our ability to create customer centric IT solutions. We are your go-to vendor partner for expert IT consultation.
We are a full service IT company. Our formidable reputation is built on the caliber of our highly qualified people who thrive on meeting challenges. Our service offerings cover the whole gamut of modern IT services:
-Application Lifecycle Management (ALM)
-Application Performance Engineering
-Strategic IT Consulting
Mission Statement:
At ArnAmy, Inc. we are on a mission to provide Efficient, Effective, and Economic solutions while creating a Win-Win-Win situation for our Customers, Consultants, and Company
The relentless pursuit of excellence in all that we do, leaves no room for mediocrity in ArnAmy.
Vision Statement:
To be viewed as a respected IT consulting and software engineering firm, providing high quality design and development services to our clients with honesty, integrity, and passion.
Core Values
Team ArnAmy is passionate about delivering dependable, scalable, and maintainable solutions to enhance our customer's business growth and development. We are guided by these principles in carrying out our duties:
Honesty
Honesty is indeed the best principle! You will experience complete transparency in all our dealings.
Integrity
We serve as trusted collaborators to guide you with customized solutions, pointing you always in the right direction.
Passion
We are completely committed and passionate about our clients. Our ability to create a long term meaningful relationship with our clients is testimony to this fact.
Never miss an opportunity! Create an alert based on the job you applied for.Similar Jobs
It looks like there aren't any Similar Jobs for this job yet.
Search all similar jobs