IT Security Controls Auditor

Adecco UK
Atherstone
GBP 10,000 - 40,000
Job description

IT Security Controls Auditor
Utilities
Predominantly remote: 1-3 days per month in Warwick
6 months
£600 per day


In short: IT Security Controls Auditor required to join a large utilities client in assessing the design of controls, testing them and documenting whether they are effective or ineffective across IT and Cyber.


In full:


We require someone to assist with the rollout and implementation of the IT Controls framework. Working within the Security Governance, Risk and Compliance (GRC) and reporting to Policy and Assurance Manager, you will work on identifying controls owners for IT security controls within the framework and work with them to assess the design and control effectiveness of the controls within their ownership. In addition, where control issues or gaps are identified, you will support control owners to develop adequate remediation plans.


Reporting to the Security GRC Policy and Assurance Manager and working within a small team performing controls testing, you will document control walkthroughs, collect evidence supporting the control assessment and control conclusion. The scope of the work will encompass IT security controls in both an Enterprise IT and Operational Technology (OT) setting.


Essential Experience:

  1. Multiple end-to-end project experience of auditing/testing IT security controls, including documenting walkthroughs and control assessment to high standards.
  2. Previous experience could be from working in a 1.5, 2nd or 3rd line or external audit role.
  3. Professional qualification related to IT audit such as CISA or ISO27001 auditor.
  4. Familiarity with IT control frameworks, such as NIST CSF, ISO27001, and CAF.
  5. Excellent communication skills, both verbal and written.
  6. Strong stakeholder management skills with the ability to engage at all levels in a business.
  7. Ability to work on own initiative with minimal supervision, organising and prioritising a demanding workload for yourself and managing stakeholders accordingly.

Qualifications:

  1. Professional internal/external audit qualification such as IIA, CISA, ISO27001 auditor.

Candidates will ideally show evidence of the above in their CV in order to be considered.


Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion. We may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.

Get a free, confidential resume review.
Select file or drag and drop it
Avatar
Free online coaching
Improve your chances of getting that interview invitation!
Be the first to explore new IT Security Controls Auditor jobs in Atherstone