IT Auditor II

  • Austin, TX
  • Posted 2 days ago | Updated 4 hours ago

Overview

On Site
BASED ON EXPERIENCE
Contract - W2
Contract - Independent
Contract - 5+ mo(s)

Skills

Testing
Cyber Security
PCI DSS
System On A Chip
Network
Identity Management
Endpoint Protection
Risk Assessment
Documentation
Cloud Computing
Amazon Web Services
Microsoft Azure
Google Cloud Platform
Google Cloud
Incident Management
Legal
SLA
Regulatory Compliance
Auditing
Presentations
CISA
CISSP
ISACA
ISO/IEC 27001:2005
Communication
Problem Solving
Conflict Resolution
Customer Relationship Management (CRM)

Job Details

Vendor Cybersecurity Compliance Auditor
Location: Austin, TX - Onsite
Duration: 6+ Months (Contract)

About the Role

iSphere is looking for a Vendor Cybersecurity Compliance Auditor who thrives on digging into details and keeping critical systems secure. You ll partner with internal stakeholders and vendors to review contracts, evaluate controls, and identify risks helping our client protect sensitive data and meet regulatory obligations.

What You ll Do

  • Review vendor contracts, SLAs, and other IT/cybersecurity requirements to confirm compliance with obligations.

  • Evaluate the design and implementation of vendor cybersecurity controls against contractual and industry standards (NIST, ISO 27001, PCI-DSS, SOC 2).

  • Collect and analyze evidence such as security policies, system configurations, logs, and access records.

  • Conduct interviews with vendor personnel to assess security practices and governance.

  • Perform control testing and sampling to verify the effectiveness of safeguards.

  • Identify gaps, deficiencies, or non-compliance in vendor controls and assess associated risks.

  • Prepare clear, concise audit reports summarizing findings, risks, and recommended corrective actions.

  • Track remediation efforts and validate closure of audit findings.

  • Coordinate with internal stakeholders to ensure vendor risks are communicated and addressed.

Required Qualifications

  • 5+ years auditing cybersecurity controls against standards such as NIST, ISO 27001, PCI-DSS, or SOC 2.

  • Strong background evaluating network protection, identity access management, endpoint security, and incident response across modern IT environments.

  • Proven ability to draft audit reports and present findings to executive and legal stakeholders.

  • Skilled in identifying security gaps, assessing risk impact, and making evidence-based recommendations.

  • 4+ years of third-party/vendor risk auditing, including contract compliance and risk assessments.

  • 3+ years reviewing and validating security documentation, procedures, and control implementations.

Preferred Skills

  • Experience auditing cloud environments (AWS, Azure, Google Cloud Platform).

  • Familiarity with vendor incident response plans and breach remediation practices.

  • Ability to interpret legal and technical language in vendor contracts to ensure SLA compliance.

  • Government or regulated industry auditing experience.

  • Strong presentation skills for executive audiences.

  • Certifications such as CISA, CISSP, CRISC, or ISO 27001 Lead Auditor.

Why iSphere?
We combine professional rigor with a collaborative, people-first culture. At iSphere, you ll join a team that values clear communication, practical problem-solving, and lasting client relationships while giving you the support and flexibility to do your best work.

If you re ready to make an impact on enterprise security, apply today and experience the iSphere difference.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About iSphere