IT & Cybersecurity Auditor - 5511

IT & Cybersecurity Auditor - 5511

3-month contract

Hybrid role with 1 day/week in office at 1 York St. location (not a deal breaker though, 100% remote candidates will do)

The IT and Cybersecurity Auditor is responsible for evaluating and assessing organization's information technology systems, infrastructure, and cybersecurity measures to ensure compliance with industry standards, regulations, and internal policies. This role plays a crucial part in identifying vulnerabilities, recommending improvements, and helping to maintain the integrity and security of the company's digital assets.

Key Responsibilities:

• Execute complex IT and Cyber Risk Audit Engagement
• Ensure proper coverage and consideration of auditing principles, practice and assigned time/budget
• Conduct technical reviews, gather evidence related to controls
• In depth understanding of technology and associated risk and controls
• Plan and conduct comprehensive IT and cybersecurity audits across the organization
• Evaluate the effectiveness of IT controls, security policies, and procedures
• Assess compliance with relevant industry standards (e.g., ISO 27001, NIST, COBIT) and regulations (e.g., GDPR, HIPAA)
• Identify vulnerabilities and weaknesses in IT systems and security measures
• Analyze audit findings and prepare detailed reports for management
• Provide recommendations for improving IT governance, risk management, and compliance
• Collaborate with IT teams to implement corrective actions and enhance security measures
• Stay updated on emerging cybersecurity threats and industry best practices
• Conduct risk assessments and assist in developing risk mitigation strategies

Must-Haves:

• 8+ years of IT auditing, IT risk management and Cyber Security Controls Assessment experience.
• Highly technical and proficient in planning and executing technical and information security scope audit that cut across the technology, information and risk management teams.
• Familiarity with cybersecurity, cloud technologies (GCP, AWS, Azure), and data analytics tools.
• Archer, ServiceNow, SQL, Tableau
• Strong project management skills with the ability to manage multiple priorities.
• Bachelor’s degree in computer science, Information Technology, or a related field
• Strong knowledge of IT infrastructure, systems, and cybersecurity principles
• Familiarity with relevant regulatory frameworks and industry standards
• Excellent analytical and problem-solving skills
• Strong written and verbal communication skills
• Ability to explain technical concepts to non-technical stakeholders

Nice to Have:

• Professional certifications such as CISA, CISSP, CEH, or CISM
• Experience with audit software and tools
• Knowledge of cloud computing security and emerging technologies
• Understanding of data privacy laws and regulations

Key Competencies:

• Attention to detail
• Critical thinking
• Ethical conduct
• Time management
• Teamwork and collaboration
• Continuous learning and adaptability