IT Senior Auditor

Join to apply for the IT Senior Auditor role at Castro & Company
.

Are you ready to take the next step in your IT audit career? Join Castro & Company as an IT Audit Senior in our growing Advisory & Accounting practice. You’ll have the opportunity to work with high-performing teams on federal engagements, leading IT audits and control assessments that make a measurable impact. This is a great opportunity for an experienced professional who is passionate about technology, risk management, and client service to strengthen a key partnership and help reestablish our presence with a valued client.

• Lead Process Walkthroughs:
  Facilitate client meetings to assess IT systems, applications, and controls.
• Engage Directly with Clients:
  Serve as a key liaison, building trusted relationships and maintaining open, professional communication throughout the engagement.
• Identify and Communicate Risk:
  Analyze IT environments, pinpoint control gaps, and clearly present associated risks and recommendations.
• Defend and Support Findings:
  Lead discussions to support audit conclusions with evidence and detailed analysis.
• Review Audit Work papers:
  Evaluate staff-prepared documentation for accuracy, completeness, and compliance with audit standards.
• Mentor and Support Staff:
  Provide guidance, technical direction, and feedback to junior team members to strengthen their professional development.
• Apply Federal IT Compliance Frameworks:
  Utilize working knowledge of federal standards and guidance, including:
  • FISCAM (Federal Information System Controls Audit Manual)
  • NIST SP 800-53 (Security and Privacy Controls for Federal Information Systems)
  • FISMA (Federal Information Security Modernization Act)

• Bachelor’s degree in Information Systems, Cybersecurity, Accounting, or a related field.
• Minimum of 2 years of experience performing IT audits or IT risk assessments.
• CISA certification preferred.
• Hands‑on experience conducting IT audits in a federal or DoD environment.
• Strong understanding of risk management and internal controls across technical and administrative systems.
• Excellent written and verbal communication skills, with the ability to document and explain complex IT processes clearly.
• Strong project management and time management skills with the ability to meet tight deadlines.
• Security Clearance:
  Must be able to pass a basic government suitability check (US Citizenship required).

• Solid understanding of federal IT environments, including system architecture, security frameworks, and compliance standards.
• Experience auditing or working with systems such as:
  • Mainframe systems
  • Microsoft environments (Active Directory, Windows Server, Azure)
  • Amazon Web Services (AWS)
  • Oracle databases and ERP systems
• Ability to assess and document administrative and technical controls across diverse platforms.
• Familiarity with FISCAM, NIST SP 800-53, and FISMA frameworks.

At Castro & Company, you’ll join a team that values collaboration, growth, and integrity. We serve the Federal Government with distinction and are committed to helping our clients achieve their strategic goals while providing our people with opportunities to thrive. You’ll gain hands‑on experience, mentorship, and exposure to challenging and meaningful work that supports the public good. We offer a supportive environment that encourages learning, teamwork, and professional excellence.

Castro & Company is an Equal Opportunity Employer and considers all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability, or any other classification protected by law.

Seniority level:
Mid‑Senior level

Employment type:

Full‑time

Job function:
Information Technology

Industries:
Accounting