Seneca Resources is hiring: Cybersecurity Auditor in Austin

Position Title: Vendor Cybersecurity Auditor

Location: Austin, TX (Onsite with travel across Texas as needed)

Position Status: Full Time, 6-Month Contract (likely to extend)

Pay Rate: $50/hr on W2

We are seeking a highly skilled Vendor Cybersecurity Auditor to support a public sector client in Austin, TX. This role will focus on evaluating third-party vendors to ensure compliance with contractual obligations, regulatory requirements, and industry cybersecurity standards.

The ideal candidate will bring expertise in vendor audits, third-party risk management, and security compliance frameworks such as NIST, ISO 27001, PCI-DSS, and SOC 2.

This is a high-visibility role requiring excellent communication skills to present findings to executives, coordinate remediation efforts, and partner with vendors and internal stakeholders. Occasional travel throughout Texas may be required.

Key Responsibilities

• Review vendor contracts, SLAs, and security requirements for compliance with obligations.
• Assess the design and effectiveness of vendor cybersecurity controls against contractual and industry standards.
• Collect and analyze evidence including security policies, system configurations, logs, and access records.
• Conduct vendor personnel interviews to evaluate governance and operational security practices.
• Perform technical and administrative control testing to verify safeguards are in place.
• Identify gaps, risks, and deficiencies in vendor controls, and recommend corrective actions.
• Draft and deliver audit reports summarizing findings and risk assessments.
• Track remediation efforts, validate closure of findings, and communicate status to stakeholders.
• Collaborate with internal teams to ensure vendor risks are addressed promptly.
• Travel across Texas may be required to conduct onsite vendor assessments.

Required Skills & Experience

• 5+ years auditing controls against NIST, ISO 27001, PCI-DSS, or SOC 2 standards.
• 5+ years evaluating security controls across IT domains including network security, IAM, endpoint protection, and incident response.
• 5+ years drafting audit reports, presenting findings to executives/legal stakeholders, and working directly with vendors.
• 5+ years applying investigative and analytical skills to identify gaps, assess risks, and recommend evidence-based actions.
• 4+ years hands-on experience conducting vendor cybersecurity audits, contract compliance reviews, and third-party risk assessments.
• 3+ years reviewing and validating security documentation and control implementation for accuracy.

Preferred Experience

• 3+ years auditing vendor environments hosted in AWS, Azure, or Google Cloud.
• 3+ years evaluating vendor incident response plans and breach remediation efforts.
• 3+ years interpreting legal/technical contract language for IT and cybersecurity obligations.
• 2+ years auditing vendors serving government agencies or regulated industries (e.g., courts).
• 2+ years presenting technical findings to non-technical stakeholders, including C-suite and legal counsel.
• 1+ year holding relevant certifications such as CISA, CISSP, CRISC, or ISO 27001 Lead Auditor.

Seneca Resources is proud to be an Equal Opportunity Employer, committed to fostering a diverse and inclusive workplace where all qualified individuals are encouraged to apply.