Job Description
Job Description
Job Title: Senior IT Auditor
Location: Miami, FL (Hybrid until July, then onsite 5 days/week)
Schedule: Monday–Friday, 8:30 AM – 5:30 PM EST (occasional weekend work)
Travel: May require travel up to 2x/year
Type: Contract-to-Hire
Position Overview:
We are seeking a highly experienced Senior IT Auditor to join our team and lead key auditing initiatives across applications, networks, platforms, and cloud environments. The ideal candidate has at least 8 years of IT auditing experience and deep expertise with SOC, COBIT frameworks, and technical audit tools. This role will include reviewing SOC 1 and SOC 2 reports, leading audit teams, writing SQL scripts, training SailPoint reviewers, and supporting data privacy and business continuity efforts.
Key Responsibilities:
-
Lead IT audits focused on applications, cloud infrastructure, platforms, and networks.
-
Review and evaluate SOC 1 and SOC 2 reports.
-
Develop audit programs and manage audit teams.
-
Create certifications to validate reviewer decisions.
-
Train audit reviewers on SailPoint usage and best practices.
-
Assist the privacy team with the DSAR process.
-
Write SQL scripts to query and analyze databases.
-
Track issues in LTG, make risk-based recommendations, and support remediation plans.
-
Assist in writing, reviewing, and updating policies and procedures.
-
Ensure audit practices align with internal standards and external frameworks, including COBIT, NIST, SOX, and ISO.
Must-Have Qualifications:
-
8+ years of IT auditing experience
-
Strong background in SOC, COBIT, and risk assessment
-
Proficient in Microsoft Excel, including VLOOKUP, XLOOKUP, and macros
-
Experience auditing applications, platforms, networks, or cloud environments
-
Familiarity with Disaster Recovery and Business Continuity Planning
Preferred Skills:
-
Experience with SailPoint or identity access management
-
Knowledge of NIST, ISO, cybersecurity, and AI tools (e.g., Agentforce, Sierra)
-
Hands-on experience with SQL scripting
-
Working knowledge of ServiceNow
-
Understanding of privacy regulations and the DSAR process