Auditor

Overview

Hybrid
Depends on Experience
Contract - W2

Skills

Analytical
report writing
cybersecurity
audit
consulting experience
advising
conscientious
Certification
Governance
Risk
Compliance
cloud security
identity management

Job Details

Cyber Security Auditor
Location: Remote, but hybrid onsite in Chicago IL is heavily preferred (2-3 days onsite)
Duration: Through July 2025
Top 5 Skill sets:
  • Analytical
  • report writing
  • cybersecurity red team, IR, audit
  • consulting experience/advising
  • conscientious
Nice to have skills or certifications:
  • CISSP
  • Security +
  • CISA
  • Red Team
Any project details:
  • need to know about. Auditing, typically short very technical projects in cyber
What is the length of the assignment?
  • 3-6 months; with potential extension
Work Location(s):
  • Chicago
  • Work Schedule: Hybrid preferred but also remote is ok. 2-3 days onsite
  • Remote US only
Interview Process:
  • Who is involved in the interview? 3- Sr. Manager Internal Audits
  • Interview will be Video or in person if we happen to be in Chicago together
  • How many interviews do you anticipate? 2
  • Do you have any series of questions that the suppliers can use to help with prescreening of candidates?
  • Explain your cyber experience
  • Explain your audit experience
Notes:
  • The struggle has been used to working remotely, that they are eager to learn and can work independently but also ask questions. I also want someone with formal audit experience. I need someone who doesn t just wait with nothing to do.
  • This position is in Chicago.
Qualifications:
  • Bachelor s degree in Cybersecurity, Information Technology, Computer Science, or a related field or 4 years of additional experience in the field.
  • 3-5 years of experience in cybersecurity.
  • Experience conducting cybersecurity audits or risk evaluation.
  • Familiarity with cybersecurity frameworks, standards, and regulations (e.g., IATA, NIST, ISO 27001).
  • Strong understanding of information security principles, practices, and technologies.
  • Experience with security tools and technologies such as SIEM, vulnerability management systems, firewalls, and intrusion detection systems.
  • Proficiency in risk management methodologies and tools.
  • Familiarity with cloud security, network security, and endpoint protection.
  • Relevant cybersecurity certifications (e.g., CISSP, CISA, CRISC, CISM, OSCP, CEH) are highly desirable.
  • Strong analytical and problem-solving skills.
  • Strong people skills.
  • Excellent communication and report-writing skills, with the ability to convey complex information to both technical and non-technical audiences.
  • Ability to work independently and as part of a team in a fast-paced environment.
  • Strong attention to detail and a commitment to maintaining the highest standards of security.
Preferred Qualifications:
  • Specific experience with cybersecurity challenges and solutions in the airline industry.
  • Consulting or advising experience.
  • Experience with GRC (Governance, Risk, and Compliance) tools and platforms.
  • Hands-on experience in ethical hacking or on a Red Team tools.
  • Experience with penetration testing or vulnerability exploitation.
  • Experience in cloud security, identity management, vulnerability management, incident response, or similar field.
  • Experience in a large-scale enterprise environment.
  • Proven experience in the airline industry, with a deep understanding of its unique cybersecurity challenges and regulatory requirements.
Role and Responsibilities:
  • The client is seeking a skilled and experienced Cyber Security Audit, and Risk Management Specialist with specific experience in the airline industry. The candidate will be responsible for assessing, monitoring, and enhancing the organization s cybersecurity posture through comprehensive audits, risk management strategies, and proactive exercises. This role requires a deep understanding of the unique cybersecurity challenges faced by the airline industry, including compliance with aviation-specific regulations and standards. The specialist will work closely with various departments to ensure the integrity, confidentiality, and availability of information assets.
Key Responsibilities:
  • Plan, conduct, and manage internal and external cybersecurity audits tailored to the airline industry, assessing the effectiveness of security controls.
  • Evaluate compliance with industry standards, regulations, and best practices, including aviation-specific standards such as the International Air Transport Association (IATA) guidelines.
  • Document audit findings, prepare detailed reports, and present recommendations to management.
  • Identify, assess, and prioritize cybersecurity risks specific to the airline industry.
  • Participate in risk assessments and act as an advisor on some engagements.
  • Ensure that security policies are communicated effectively to all employees and are enforced consistently across the organization.
  • Stay informed about new and emerging threats, vulnerabilities, and regulatory changes that may impact the airline industry.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.