IT Audit & Security Operations Specialist (IM8)

5-7 Years

Save

Early Applicant

Job Description

Responsibilities

Execute and review regular OS patching, vulnerability assessments, and system configurations to ensure compliance with IT security standards.
Manage enterprise access controls, privileged accounts, password policies, and maintain accurate server and asset inventories for audit readiness.
Oversee SSL/TLS certificate lifecycles, track End-of-Life and End-of-Support systems, and provide evidence for system lifecycle compliance.
Conduct periodic IT control and risk assessments, perform User Access Reviews, and validate segregation-of-duties compliance.
Monitor security logs for anomalies and potential policy violations.
Prepare audit-ready reports for management and regulatory reviews, and support auditors with evidence and explanations of IT controls.
Track remediation of security findings, ensure timely closure of audit and risk issues, and maintain comprehensive records of compliance checks and risk mitigation activities.

Requirements

Bachelor's degree in IT, Computer Science, or a related field.
5+ years of experience in IT security operations, IT auditing, or IT compliance.
Relevant certifications (e.g., CISSP, CISA, CompTIA Security+).
Strong knowledge of IT controls, risk frameworks, and audit practices.
AWS certifications and familiarity with cloud security auditing will be good to have.
Strong analytical and problem-solving abilities, with an audit mindset.
Excellent documentation, reporting, and communication skills.
Experience with IT security monitoring, logging, and compliance tools.
Familiarity with compliance frameworks such as ISO 27001, NIST, or COBIT.
Working knowledge of AWS services (IAM, CloudWatch, etc.) is desirable.