Cybersecurity Auditor

🔒 Confidential Employer
Posted 13 August 2025
LOCATION
Remote
TYPE
Full-time
LEVEL
Mid-Senior level
CATEGORY
Cybersecurity
This employer holds a UK Home Office sponsor license — sponsorship for this specific role is at the employer’s discretion

SKILLS

Cybersecurity Auditing Risk Assessments Vulnerability Management ISO 27001 NIST GDPR CISA CISSP

FULL DESCRIPTION

Summary

[Employer hidden — view at passion-project.co.uk] is seeking a Cybersecurity Auditor to conduct audits, evaluate compliance, review security policies, and provide recommendations. The role requires experience in IT security or risk management, knowledge of cybersecurity frameworks, and familiarity with industry standards. Certifications like CISA or CISSP are highly desirable.

Key Responsibilities/Duties:

  • Conducting thorough audits of cybersecurity systems, processes, and controls to identify risks and vulnerabilities
  • Evaluating compliance with industry standards and regulatory requirements (e.g., GDPR, ISO 27001, NIST)
  • Reviewing internal security policies, procedures, and practices to ensure they align with best practices
  • Reporting audit findings to senior management and providing actionable recommendations for improvement
  • Collaborating with internal teams to implement audit recommendations and enhance overall cybersecurity posture

Core Requirements/Qualifications/Skills:

  • Proven experience as a Cybersecurity Auditor or in a similar role within IT security or risk management
  • Strong knowledge of cybersecurity frameworks (e.g., ISO 27001, NIST Cybersecurity Framework, SOC 2)
  • Experience with audit tools and techniques, risk assessments, and vulnerability management
  • Familiarity with regulatory requirements and industry standards (e.g., GDPR, PCI-DSS, HIPAA)
  • Certifications such as CISA, CISSP, or ISO 27001 Lead Auditor are highly desirable

What You’ll Be Working On:

  • Conducting thorough audits of cybersecurity systems, processes, and controls to identify risks and vulnerabilities
  • Evaluating compliance with industry standards and regulatory requirements (e.g., GDPR, ISO 27001, NIST)
  • Reviewing internal security policies, procedures, and practices to ensure they align with best practices
  • Reporting audit findings to senior management and providing actionable recommendations for improvement
  • Collaborating with internal teams to implement audit recommendations and enhance overall cybersecurity posture

What We’re Looking For:

  • Proven experience as a Cybersecurity Auditor or in a similar role within IT security or risk management
  • Strong knowledge of cybersecurity frameworks (e.g., ISO 27001, NIST Cybersecurity Framework, SOC 2)
  • Experience with audit tools and techniques, risk assessments, and vulnerability management
  • Familiarity with regulatory requirements and industry standards (e.g., GDPR, PCI-DSS, HIPAA)
  • Certifications such as CISA, CISSP, or ISO 27001 Lead Auditor are highly desirable
Sign up free — access 45,000+ UK sponsor-licensed jobs