Senior IT Auditor
Job Description & How to Apply Below
Job Overview
We are seeking a highly skilled and certified Senior IT Auditor to join our Internal Audit team. The ideal candidate will have extensive experience in IT audit, cybersecurity, and compliance within the retail sector and must be proficient in auditing both on-premises and cloud environments. The Senior IT Auditor will be responsible for assessing IT risks, evaluating security controls, ensuring regulatory compliance, and providing recommendations to enhance IT governance, cybersecurity, and operational efficiency.
Qualifications& Experience
- Education &
Certifications:- Bachelor’s or master’s degree in information technology, Cybersecurity, Computer Science, or a related field.
- Mandatory
Certifications:
Certified Information Systems Auditor (CISA) and Certified Internal Auditor (CIA). - Optional
Certifications:
Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), Certified Information Security Manager (CISM), AWS/Azure Security Certification (preferred).
- Experience:
- 5+ years of IT audit experience in a retail, e-commerce, or FMCG environment.
- Strong understanding of cloud security, IT risk management, and cybersecurity frameworks.
- Experience in cloud auditing and on-premises IT infrastructure auditing.
- Hands‑on experience with SIEM, firewall configurations, identity & access management, and vulnerability management.
- Familiarity with regulatory compliance standards such as PCI DSS, GDPR, SOX, and HIPAA.
- Technical Proficiency:
Deep understanding of IT security controls, network security, databases, and cloud platforms. - Analytical
Skills:
Strong risk assessment and problem‑solving abilities. - Communication
Skills:
Ability to present audit findings to technical and non‑technical stakeholders. - Attention to Detail:
Precision in identifying risks and compliance gaps. - Project Management:
Experience managing IT audits and working with cross‑functional teams. - Adaptability:
Ability to audit hybrid environments (on‑prem + cloud) and adapt to evolving IT risks.
- IT Audit & Risk Assessment
- Plan, execute, and manage IT audits for on‑premises and cloud environments.
- Identify, assess, and report IT risks, vulnerabilities, and control deficiencies.
- Evaluate IT general controls (ITGCs), application controls, and data security measures.
- Perform risk‑based assessments of IT infrastructure, cloud platforms, and networks.
- Review penetration testing and vulnerability assessments as part of IT audits.
- Assess risks related to third‑party IT vendors and cloud service providers.
- Cybersecurity & Compliance Audits
- Evaluate cybersecurity frameworks and recommend improvements.
- Assess cloud security configurations against industry best practices.
- Ensure compliance with PCI DSS, GDPR, HIPAA, SOX, and other applicable IT regulations.
- Conduct data privacy audits to ensure compliance with data protection laws.
- Audit endpoint security, identity access management (IAM), SIEM solutions, and firewall configurations.
- Cloud & Infrastructure Auditing
- Audit hybrid environments, including on‑premises data centers and cloud platforms.
- Assess cloud migration strategies, security controls, and data integrity in cloud services.
- Review cloud security and compliance policies.
- Evaluate cloud cost optimization, governance, and configuration management controls.
- IT Governance & Best Practices
- Assess IT policies, procedures, and frameworks against industry standards (COBIT, ITIL).
- Evaluate IT asset management, change management, and incident response processes.
- Audit IT disaster recovery and business continuity plans (BCP/DRP).
- Provide recommendations to enhance IT governance, security posture, and operational efficiency.
- Reporting & Stakeholder Engagement
- Prepare audit reports, detailing findings, risks, and actionable recommendations.
- Present audit results to senior management, IT leadership, and compliance teams.
- Collaborate with IT, cybersecurity, and compliance teams to address audit findings.
- Support external auditors and regulatory agencies in IT compliance assessments.
Position Requirements
10+ Years
work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×