Job Title: IT Security Controls Auditor
Location: Predominantly remote, with 1-3 days per month in Warwick
Duration: 6 months
Rate: £600 per day
The successful candidate will assist with the rollout and implementation of the IT Controls framework, working within the Security Governance, Risk and Compliance (GRC) team and reporting to the Policy and Assurance Manager.
Key Responsibilities:
* Identify control owners for IT security controls within the framework and work with them to assess the design and control effectiveness of the controls within their ownership.
* Support control owners in developing adequate remediation plans where control issues or gaps are identified.
* Document control walkthroughs, collect evidence supporting the control assessment and control conclusion, and report on findings.
Requirements:
* Multiple end-to-end project experience of auditing/testing IT security controls, including documenting walkthroughs and control assessment to high standards.
* Professional qualification related to IT audit, such as CISA or ISO27001 auditor.
* Familiarity with IT control frameworks, including NIST CSF, ISO27001, and CAF.
* Excellent communication and stakeholder management skills.
We offer a competitive rate of £600 per day and the opportunity to work on a challenging project with a large utilities client. If you have the relevant experience and skills, please submit your application.