This Job Vacancy has Expired!

IT Infrastructure Security Audit Lead

Request Technology - Craig Johnson

Posted on Nov 23, 2021 by Request Technology - Craig Johnson

Virginia, VA
Immediate Start
$110k - $140k Annual

*We are unable to sponsor for this permanent Full time role*

*Position is bonus eligible*

Prestigious Enterprise Company is currently seeking an IT Infrastructure Security Audit Lead. Candidate will be part of this team and focus on executing end-to-end audit services on Information & Technology risk. This spans over multiple areas while reviewing the Freddie Mac's core business processes down to delivering audits directed on core Information Technology General Controls. As part of the Third Line of Defense the candidate will work closely with risk partners in the Second Line of Defense and practitioners in the First Line of Defense in both the lines of business and Information Technology.


  • Work independently or as part of an audit teams and ensure work is completed on time and in keeping with professional standards.
  • Perform and document work such as procedure development, walkthroughs and controls testing in accordance with Internal Audit standards.
  • Stay abreast of current business and industry trends relevant to our industry.
  • Consult with internal teams on areas of risk related to common infrastructure (eg network, UNIX, databases) and information security (eg governance, security monitoring, threat and vulnerability).
  • Conduct internal training sessions to share knowledge and best practices.
  • Identify and use data sources to drive analytical insights into the technology infrastructure.
  • Support Audit team with hands-on testing
  • Maintain technical knowledge through ongoing research and review of industry publications.
  • Contribute to team knowledge by leading teamwide training and knowledge shares
  • Run and improve Internal Audit's technology lab to explore new tools/technologies and facilitate the team's training.


  • Minimum of 6 years working experience. Experience must include a minimum of 4 years in Information & Technology or Information Security.
  • Relevant degree in Management Information Systems, Business Administration with an emphasis in Technology, Computer Science, Accounting Information Systems or related discipline
  • Implementation experience or compliance review experience of industry standards to include COBIT, NIST, ISO, or ITIL
  • Platform, Middleware, and application audit experience to include experience with the various levels of the OSI model and technologies including Windows, Unix and Oracle.
  • Basic knowledge of cloud-based tools, applications and vendors such as AWS, Azure, or Google.
  • Deep knowledge of NIST, SDLC, COBIT, ITIL, ISO, IT General Controls preferred

Reference: 1408553154

Set up alerts to get notified of new vacancies.