Cybersecurity Audit Analyst

Job Overview

An organization within the public sector is seeking an experienced Cybersecurity Audit Analyst to support and enhance an enterprise-wide governance, risk, and compliance program. This role is ideal for a professional with a strong background in cybersecurity auditing, risk management, and regulatory compliance who can work effectively across technical and business teams. Candidates who demonstrate expertise in audit coordination, cybersecurity frameworks, and stakeholder communication will be strongly considered for interview opportunities.

• Minimum of five (5) years of experience in cybersecurity audit, IT audit, compliance, or risk management
• Strong understanding of cybersecurity and control frameworks such as NIST and CIS Controls
• Experience conducting audits, risk assessments, and compliance reviews within a regulated environment
• Ability to evaluate internal controls and recommend process improvements
• Strong analytical and problem‑solving skills with the ability to assess complex technical and operational risks
• Excellent written and verbal communication skills, including executive-level reporting
• Proven ability to manage multiple priorities, deadlines, and audit deliverables simultaneously
• Exceptional organizational skills with strong attention to detail and documentation accuracy
• Ability to collaborate effectively across teams, departments, and leadership levels
• Working knowledge of IT infrastructure, software applications, and vendor management practices preferred

• Support the ongoing development and maturity of the enterprise cybersecurity audit program
• Coordinate internal and external audit activities while ensuring timely and accurate responses to requests
• Partner with risk, compliance, and operational stakeholders to evaluate controls and strengthen governance practices
• Track remediation activities and ensure identified audit issues are resolved efficiently
• Provide actionable reporting and insights to leadership regarding compliance risks and control effectiveness

• Conduct scheduled reviews of internal cybersecurity and operational processes to verify compliance with established controls and standards
• Assist in formalizing and improving audit procedures, workflows, templates, and reporting processes
• Collaborate with risk analysts and stakeholders to ensure audits align with current risk mitigation strategies
• Perform audit testing, documentation reviews, interviews, and evidence collection activities
• Prepare clear and comprehensive audit findings, recommendations, and executive summaries
• Identify control gaps, compliance concerns, and governance risks requiring management attention
• Maintain accurate tracking of audit findings, remediation actions, and closure activities
• Coordinate responses to internal and external audit requests across multiple business areas
• Build productive working relationships with technical teams, leadership, and operational stakeholders
• Support the administration and oversight of internal audit liaison activities and related governance initiatives
• Assist with planning, scheduling, and monitoring audit program milestones and deliverables
• Contribute to continuous improvement efforts related to enterprise governance, risk, and compliance operations

• Hybrid work arrangement with approximately two onsite days per week based on operational needs
• Standard schedule is Monday through Friday during regular business hours
• Occasional local travel may be required for meetings, audits, or industry-related events
• Employment is contingent upon completion of background screening, fingerprinting, and required security training
• Candidates should be comfortable working in a fast‑paced environment with evolving priorities and cross‑functional collaboration
• Strong adaptability, professionalism, and commitment to high‑quality work are essential for success in this role