Senior IT Auditor

Role: IT Auditor with IAM experience

Location: Richardson, TX Only locals

Duration: Long Term Contract

Need only locals, 5 days onsite role.

Need, someone with Auditing experience.

We are seeking a highly analytical and detail-oriented Certification Analyst to join our Cybersecurity team. This role focuses on managing and enhancing our user access certification processes to ensure compliance with internal security policies, regulatory requirements, and audit expectations. The ideal candidate has a strong background in Internal Audit, a solid understanding of Identity and Access Management (IAM) principles, and experience working in highly regulated environments.

Key Responsibilities

• User Access Reviews (UARs):
• Execute periodic and ad-hoc user access certifications across critical systems and applications.
• Collaborate with business and IT stakeholders to ensure timely completion of access reviews.
• Identify and remediate unauthorized access based on certification results.
• Audit & Compliance Support:
• Work closely with Internal Audit and Compliance teams to align IAM certification processes with regulatory and security standards (e.g., SOX, HIPAA, PCI-DSS).
• Maintain audit-ready documentation and respond to audit requests efficiently.
• Identify gaps in current certification processes and recommend improvements.
• IAM Governance & Process Optimization:
• Develop and enhance policies, procedures, and workflows related to user access reviews.
• Utilize automation tools to streamline certification campaigns and improve operational efficiency.
• Monitor and report on key access certification metrics to IAM leadership.
• Collaboration & Stakeholder Engagement:
• Serve as a liaison between IAM, Internal Audit, IT, and business units to improve access governance.
• Provide training and guidance to certification reviewers to ensure accurate decision-making.
• Escalate high-risk findings and assist in remediation efforts.

Qualifications & Experience

• Required:
• Bachelor's degree in Cybersecurity, Information Systems, Business, or a related field.
• 3+ years of experience in Internal Audit, Risk, Compliance, or IAM Governance.
• Strong knowledge of IAM best practices, including access reviews, least privilege, and segregation of duties.
• Familiarity with compliance frameworks such as SOX, ISO 27001, NIST, PCI-DSS, HIPAA, COBIT, FFIEC,.
• Experience working with IAM platforms (e.g., SailPoint, AWS, Okta, CyberArk, Microsoft Identity Manager).
• Proficiency in analyzing user access data and generating reports using Excel, SQL, Power BI, or similar tools.
• Excellent communication skills with the ability to engage technical and non-technical stakeholders.
• Preferred:
• Professional certifications such as CISA, CRISC, CISSP, or IAM-related certifications.
• Experience in audit remediation and implementing security controls.
• Prior experience in a regulated industry (finance, healthcare, government, etc.).
• Experience operating an ITIL based ITSM such as ServiceNow preferred.
• Troubleshooting and organizational skills and ability to work on multiple initiatives simultaneously is a must.