IT Security Audit & Compliance Specialist

About the role

The IT Security Audit & Compliance Specialist will lead the design, execution, and monitoring of information security audits and compliance programs across the organization. This role ensures adherence to security standards, regulatory requirements, and internal governance frameworks while strengthening the overall cybersecurity posture.

Key responsibilities

• Develop and maintain comprehensive IT security audit and compliance programs, including scope, methodology, and work plans.
• Execute security assessments for systems, applications, infrastructure, and cloud environments, and document findings.
• Monitor cybersecurity maturity, maintain control matrices, and identify gaps against multiple compliance frameworks.
• Conduct vulnerability and compliance assessments, coordinate remediation, and track closure of audit findings.
• Prepare and present audit and compliance reports to senior leadership and stakeholders.
• Collaborate with IT operations, business units, HR, finance, and external auditors to gather evidence and support audit activities.

Required profile

• Proven experience in information security auditing, compliance management, or related cybersecurity governance.
• Strong understanding of regulatory requirements and industry security standards.
• Ability to work independently, manage multiple audit cycles, and communicate findings clearly.

Required skills

• Identity and Access Management (IAM)
• Privileged Access Management (PAM)
• Data Loss Prevention (DLP)
• Vulnerability assessment and remediation
• Audit framework development and execution
• Compliance frameworks (e.g., ISO 27001, NIST, GDPR)

What we offer

• Opportunity to shape the organization’s security governance.
• Collaborative environment with cross‑functional teams.
• Continuous learning and professional development in cybersecurity.