Senior Security Auditor

Job Description

Title: Senior Security Auditor

Location: Rosemont, IL (Hybrid)

Type: Full time, direct hire

US Citizens and GCH encouraged to apply. This role does note offer sponsorship now or in the future.

Responsibilities:

• Execute and support risk-based audits with a focus on Information Security (IS), assessing the design and effectiveness of internal controls.
• Utilize strong project management skills to deliver audits using a structured, milestone-driven approach.
• Contribute to the creation of audit programs and testing procedures aligned with identified risks and audit objectives within the IS domain.
• Present audit scopes, findings, and recommendations to senior audit leadership and key stakeholders.
• Monitor and validate the timely remediation of audit issues and control gaps.
• Support the development of the annual audit plan and risk assessment process in coordination with audit leadership.
• Help train and mentor junior team members to strengthen overall team capabilities.

Required Skills:

• Bachelor’s degree in Cybersecurity, Information Systems, Information Technology, Business, Data Science/Analytics, or a related field.
• Professional certification required (e.g., CISA, CISSP, CISM, CCSP, CEH, or equivalent).
• 4–7 years of experience in cybersecurity, IT audit, information systems, or a related discipline.
• At least 1 year of experience in team supervision or project management.
• Strong understanding of core cybersecurity and IT concepts, including infrastructure, applications, cloud security, and engineering.
• Familiarity with cybersecurity and IT governance frameworks such as NIST 800-53, NIST CSF, COBIT, ISO 27001/2, CIS Controls, OWASP, and MITRE ATT&CK.