Megan Soft Inc

IT Auditor and Cybersecurity Job at Megan Soft Inc in Aurora

Megan Soft Inc, Aurora, TX, United States

Job Title: IT Auditor II and cybersecurity

Location: Austin, TX (Hybrid)

Duration: 5+ Months

Mode of Interview: In-Person

Review vendor contracts, SLAs, and cybersecurity requirements to ensure compliance.
Assess vendor cybersecurity controls against contractual, legal, and industry standards (NIST, ISO 27001, SOC 2, PCI-DSS).
Collect and analyze evidence such as policies, configurations, logs, and access records.
Conduct interviews with vendor staff to evaluate security practices.
Perform control testing and validate the effectiveness of technical and administrative safeguards.
Identify risks, gaps, and deficiencies in vendor security practices.
Prepare clear audit reports with findings, risks, and recommended remediation.
Track remediation progress and verify closure of audit findings.
Collaborate with internal teams to ensure vendor risks are communicated and managed effectively.

5+ years of experience auditing security controls using frameworks such as NIST, ISO 27001, PCI-DSS, or SOC 2.
Strong IT auditing background, including areas like network security, IAM, endpoint protection, and incident response.
Excellent communication skills, with experience writing audit reports and presenting findings to executive or legal stakeholders.
Proven analytical and investigative skills to assess risks and recommend solutions.
4+ years of hands-on third-party/vendor risk auditing experience.
3+ years of reviewing security policies, procedures, and documentation for accuracy.

Experience auditing cloud environments (AWS, Azure, GCP).
Knowledge of incident response and breach assessment.
Ability to interpret IT and cybersecurity obligations in vendor contracts and SLAs.
Background in government or regulated industries (courts preferred).
Experience presenting technical findings to executive or legal audiences.
Relevant certifications (CISA, CISSP, CRISC, ISO 27001 Lead Auditor).

#J-18808-Ljbffr