Overview
On Site
Hybrid
USD 56.00 per hour
Full Time
Skills
CISA
CISSP
Information Technology
NIST 800-53
Testing
Risk Management
Documentation
Workflow
Regulatory Compliance
Security Controls
Management
Reporting
Auditing
Information Security
Continuous Monitoring
Incident Management
Job Details
Date Posted: 07/22/2025
Hiring Organization: Rose International
Position Number: 485832
Industry: Government/Staffing
Job Title: IT Security Auditor
Job Location: Richmond, VA, USA, 23219
Work Model: Hybrid
Work Model Details: Tuesday AND Thursday each week
Shift: Regular
Employment Type: Temporary
FT/PT: Full-Time
Estimated Duration (In months): 12
Min Hourly Rate($): 56.00
Max Hourly Rate($): 60.00
Must Have Skills/Attributes: CISA, Documentation, Reporting, Risk Management, Security
Experience Desired: Audit and compliance/information security/information technology (8 yrs); Information Security control audit and assessment experience (4 yrs); NIST 800-53 or other security framework (4 yrs)
Required Minimum Education: Associate's Degree
Preferred Education: Bachelor's Degree
Preferred Certifications/Licenses: CISA, CIA, GSNA, CISSP, or equivalent
**C2C is not available**
Job Description
DESIRED CERTIFICATION:
Industry recognized certification - CISA, CIA, GSNA, CISSP, or equivalent
REQUIRED SKILLS/ EXPERIENCE:
Audit and compliance/information security/information technology experience or combination thereof: 8 Years
Information Security control audit and assessment experience: 4 Years
NIST 800-53 or other security framework: 4 Years
Perform testing, analysis, reporting, and develop remediation plans for compliance with operational and management controls: 4 Years
Develop and update policies, procedures, and documentation: 2 Years
ABOUT THE ROLE:
The Client is seeking an experienced IT auditor to support our transition to a new security standard and strengthen our third-party risk management program. This role will help interpret and implement updated security requirements, conduct audits and assessments of both internal processes and external vendors and partners, evaluating controls and recommending improvements.
ROLE/ RESPONSIBILITIES AND DUTIES INCLUDE:
Assess current security controls and processes against new CMS, IRS, and security standards
Identify gaps and recommend remediation steps to achieve and maintain compliance
Plan, lead, and execute development and updates to policies, procedures, and documentation to reflect requirements
Design, implement, and train on the process for assessing partners and vendors, ensuring alignment with security standards
Develop assessment tools, workflows, and scoring model to evaluate and measure the effectiveness and compliance of vendor and partner security controls
Evaluate the security posture of vendors and partners to ensure information security contractual, information sharing, and data sharing agreement requirements are met
Test the effectiveness of operational and management controls using interviews, document reviews, and observation
Analyze, assess, report, and present on audit findings, risk exposure, and recommendations
Support information security continuous monitoring and incident response programs
Perform related work as required
Benefits:
For information and details on employment benefits offered with this position, please visit here. Should you have any questions/concerns, please contact our HR Department via our secure website.
California Pay Equity:
For information and details on pay equity laws in California, please visit the State of California Department of Industrial Relations' website here.
Rose International is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender (expression or identity), national origin, arrest and conviction records, disability, veteran status or any other characteristic protected by law. Positions located in San Francisco and Los Angeles, California will be administered in accordance with their respective Fair Chance Ordinances.
If you need assistance in completing this application, or during any phase of the application, interview, hiring, or employment process, whether due to a disability or otherwise, please contact our HR Department.
Rose International has an official agreement (ID #132522), effective June 30, 2008, with the U.S. Department of Homeland Security, U.S. Citizenship and Immigration Services, Employment Verification Program (E-Verify). (Posting required by OCGA 13/10-91.).
Hiring Organization: Rose International
Position Number: 485832
Industry: Government/Staffing
Job Title: IT Security Auditor
Job Location: Richmond, VA, USA, 23219
Work Model: Hybrid
Work Model Details: Tuesday AND Thursday each week
Shift: Regular
Employment Type: Temporary
FT/PT: Full-Time
Estimated Duration (In months): 12
Min Hourly Rate($): 56.00
Max Hourly Rate($): 60.00
Must Have Skills/Attributes: CISA, Documentation, Reporting, Risk Management, Security
Experience Desired: Audit and compliance/information security/information technology (8 yrs); Information Security control audit and assessment experience (4 yrs); NIST 800-53 or other security framework (4 yrs)
Required Minimum Education: Associate's Degree
Preferred Education: Bachelor's Degree
Preferred Certifications/Licenses: CISA, CIA, GSNA, CISSP, or equivalent
**C2C is not available**
Job Description
DESIRED CERTIFICATION:
Industry recognized certification - CISA, CIA, GSNA, CISSP, or equivalent
REQUIRED SKILLS/ EXPERIENCE:
Audit and compliance/information security/information technology experience or combination thereof: 8 Years
Information Security control audit and assessment experience: 4 Years
NIST 800-53 or other security framework: 4 Years
Perform testing, analysis, reporting, and develop remediation plans for compliance with operational and management controls: 4 Years
Develop and update policies, procedures, and documentation: 2 Years
ABOUT THE ROLE:
The Client is seeking an experienced IT auditor to support our transition to a new security standard and strengthen our third-party risk management program. This role will help interpret and implement updated security requirements, conduct audits and assessments of both internal processes and external vendors and partners, evaluating controls and recommending improvements.
ROLE/ RESPONSIBILITIES AND DUTIES INCLUDE:
Assess current security controls and processes against new CMS, IRS, and security standards
Identify gaps and recommend remediation steps to achieve and maintain compliance
Plan, lead, and execute development and updates to policies, procedures, and documentation to reflect requirements
Design, implement, and train on the process for assessing partners and vendors, ensuring alignment with security standards
Develop assessment tools, workflows, and scoring model to evaluate and measure the effectiveness and compliance of vendor and partner security controls
Evaluate the security posture of vendors and partners to ensure information security contractual, information sharing, and data sharing agreement requirements are met
Test the effectiveness of operational and management controls using interviews, document reviews, and observation
Analyze, assess, report, and present on audit findings, risk exposure, and recommendations
Support information security continuous monitoring and incident response programs
Perform related work as required
- **Only those lawfully authorized to work in the designated country associated with the position will be considered.**
- **Please note that all Position start dates and duration are estimates and may be reduced or lengthened based upon a client's business needs and requirements.**
Benefits:
For information and details on employment benefits offered with this position, please visit here. Should you have any questions/concerns, please contact our HR Department via our secure website.
California Pay Equity:
For information and details on pay equity laws in California, please visit the State of California Department of Industrial Relations' website here.
Rose International is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender (expression or identity), national origin, arrest and conviction records, disability, veteran status or any other characteristic protected by law. Positions located in San Francisco and Los Angeles, California will be administered in accordance with their respective Fair Chance Ordinances.
If you need assistance in completing this application, or during any phase of the application, interview, hiring, or employment process, whether due to a disability or otherwise, please contact our HR Department.
Rose International has an official agreement (ID #132522), effective June 30, 2008, with the U.S. Department of Homeland Security, U.S. Citizenship and Immigration Services, Employment Verification Program (E-Verify). (Posting required by OCGA 13/10-91.).
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.