Information Security Auditor (Cybersecurity)

TL;DR

Information Security Auditor (Cybersecurity): Managing information security, compliance, and risk management programs with an accent on SOC 2 and PCI DSS audit execution. Focus on auditing cloud environments, developing security controls, and ensuring alignment with industry frameworks like ISO 27001 and NIST.

Location: Remote (US)

Salary: $106.5K – $138K

Company

hirify.global is a software provider specializing in technology solutions for financial institutions.

What you will do

• Facilitate audit testing for SOC 2 and PCI DSS, including control monitoring and remediation guidance.
• Lead audits of cloud environments, information systems, and security tools to ensure adherence to laws and regulations.
• Perform comprehensive security control assessments to determine effectiveness and meet security requirements.
• Collaborate with stakeholders to secure systems and implement compensating controls.
• Research information security trends and frameworks to lead remediation activities and maintain certifications.
• Document control objectives for cybersecurity, DevSecOps, cloud security, and technology risk management.

Requirements

• Bachelor's degree with 4-6 years of related experience.
• 3+ years of experience in external or internal audit roles managing AICPA SOC 2 and PCI DSS.
• Knowledge of industry frameworks including ISO/IEC 27001:2013, PCI DSS, NIST CSF, and NIST 800-53.
• Experience assessing controls within multi-cloud environments.
• Must be based in the United States.
• Possess or be working towards certifications such as CISA, CISSP, CRISC, CCSP, CISM, GIAC, or QSA.

Culture & Benefits

• Full-time remote work arrangement.
• Opportunity for continuous professional growth through structured and self-directed training.
• Collaborative environment focusing on consensus building across business and technology leadership.