IT Auditor

Overview

Hybrid
Depends on Experience
Contract - W2
Contract - 6 Month(s)

Skills

it audit

Job Details

IT Auditor Austin, TX (Hybrid)

Contract: Long-Term
Eligibility: Must be local to the Austin area and able to work onsite 3 days per week (hybrid schedule). Must be able to work on a W2 basis (no C2C, 1099, or third-party vendors). Must be eligible to work in the U.S. without sponsorship or visa transfer.

Overview:
We are seeking an experienced IT Auditor to assess vendor contracts, cybersecurity controls, and compliance with industry standards. This role requires expertise in IT and cybersecurity auditing, vendor risk management, and presenting findings to both technical and executive stakeholders.

Minimum Requirements to Be Considered:

  • 5+ years auditing against cybersecurity frameworks (NIST, ISO 27001, PCI-DSS, SOC 2) with knowledge of data protection laws and third-party risk management.

  • 5+ years of technical IT auditing (network protection, IAM, endpoint security, incident response).

  • 5+ years drafting audit reports, presenting findings, and engaging constructively with vendors.

  • 5+ years of analytical experience identifying security gaps, assessing risk, and recommending corrective actions.

  • 4+ years of third-party/vendor risk auditing including due diligence and contract compliance.

  • 3+ years reviewing policies, documentation, and procedures for accuracy and completeness.

  • 3+ years auditing cloud environments (AWS, Azure, or Google Cloud).

  • 3+ years evaluating incident response and breach remediation practices.

  • 3+ years interpreting contracts and SLAs for IT/cybersecurity compliance.

  • 2+ years in government or regulated industries (courts experience a plus).

  • Proven experience presenting technical findings to executives and non-technical audiences.

  • At least one relevant certification (CISA, CISSP, CRISC, or ISO 27001 Lead Auditor).

Key Responsibilities:

  • Review vendor contracts, SLAs, and cybersecurity requirements for compliance.

  • Evaluate vendor controls and practices against contractual obligations and industry standards.

  • Collect and analyze audit evidence (policies, system configurations, logs, access records).

  • Conduct interviews with vendor personnel and perform control testing.

  • Identify deficiencies or risks and provide evidence-based recommendations.

  • Prepare detailed audit reports and present findings to internal stakeholders.

  • Track remediation efforts and validate closure of findings.

  • Collaborate with internal teams to ensure vendor risks are communicated and mitigated.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.