Job Summary
The Cybersecurity Audit Manager is responsible for leading and executing comprehensive audits of the organization's cybersecurity controls, policies and procedures. This role ensures compliance with regulatory requirements, identifies vulnerabilities and recommends improvements to strengthen the organization's security posture.
Key Roles and Responsibilities:
Audit Planning and Execution
- Develop and maintain a comprehensive cybersecurity audit framework aligned with the business objectives and goals.
- Identify high risk areas and prioritize audit engagements based on threat intelligence, business impact and regulatory requirements
- Lead end to end audits covering network security, endpoint protection, cloud infrastructure, identity and access management and data governance
- Perform technical assessments including vulnerability scans, configuration reviews and tests
- Prepare details audit reports
- Partner with various departments such as Central IT, legal and compliance to align cybersecurity goals with the business objectives
Qualifications & Experience:
- Bachelor's degree in Information Security, Computer Science, Information Systems, or related field (Master's preferred).
- Minimum 5–8 years of experience in cybersecurity, IT audit, or risk management, with at least 2 years in a leadership role.
- Professional certifications such as: Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), ISO 27001 Lead Auditor
