CrawlJobs Logo

Senior Consultant – IT Infrastructure & Security Audit

Saudi Arabia, Riyadh · Job Posted January 26, 2026
Apply Position
Job Link Share

Job Description

My client are looking for a Senior Consultant with strong experience in infrastructure, operations, and security-related audits to join a growing technology risk and assurance team. This role provides hands-on exposure to critical IT environments and the opportunity to work on complex audit and advisory engagements.

Job Responsibility

  • Perform audits of IT infrastructure and operations, focusing on security and resilience
  • Assess network security controls, including firewalls, VPNs, and related perimeter technologies
  • Review data centre and technical room operations, covering physical security, environmental controls, and operational processes
  • Identify control gaps and security risks, and provide clear, practical remediation recommendations
  • Prepare high-quality audit documentation and reports for management and senior stakeholders
  • Support engagement delivery and mentor junior team members

Requirements

  • Proven experience in IT infrastructure, operations, or security audits at Senior Consultant or Assistant Manager level
  • Strong understanding of network security concepts (e.g. firewalls, VPNs, network segmentation)
  • Experience reviewing data centre operations and physical/technical security controls
  • Background in IT audit, technology risk, or information security
  • Strong analytical, communication, and stakeholder management skills

Nice to have

  • Experience in consulting or professional services environments
  • Relevant certifications such as CISA, CISSP, or ISO 27001 exposure

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Consultant – IT Infrastructure & Security Audit

8 matching positions

Senior Security Consultant

The Senior Security Consultant will lead security architecture design and compli...
Location
Location
United States , Cheyenne
Salary
Salary:
97864.00 - 145000.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum ten (10) years of combined, progressive experience in cybersecurity, information assurance, or IT security, including senior advisory, advanced practitioner, or program-level leadership responsibilities
  • Demonstrated expertise in: Threat modeling
  • Security architecture
  • Security and privacy risk assessments across the full Software Development Life Cycle (SDLC) and production environments
  • Proven experience in IT governance, risk, and compliance (GRC), including: Internal and external audit and compliance assessments
  • Drafting and maintaining security and privacy documentation
  • Conducting security and privacy risk assessments
  • Extensive experience developing and supporting: Security Incident Response Plans
  • System Security & Privacy Plans (SSPPs)
  • Risk Assessments and POA&M remediation strategies
Job Responsibility
Job Responsibility
  • Provides System Integration security architecture design and collaborate with the client to document security standards and provide security architecture advice and oversight to module vendors in support of module solution development, integration, and infrastructure
  • Responsible for adherence to State security standards, communications with State Chief Information Security Officer (CISO), compliance with HIPAA, Health Information Technology for Economic and Clinical Health (HITECH) and NIST requirements, and Internal Revenue Service (IRS) Federal Tax Information
What we offer
What we offer
  • medical insurance
  • dental insurance
  • vision insurance with an employer contribution
  • flexible spending or health savings account
  • life and AD&D insurance
  • short and long term disability coverage
  • paid time off
  • employee assistance
  • participation in a 401k program with company match
  • additional voluntary or legally-required benefits
  • Fulltime
Read More
Arrow Right

Senior Associate / Associate - IT Audit, Risk Advisory Services

Forvis Mazars is a leader in audit, tax and advisory services worldwide, operati...
Location
Location
Hong Kong , Hong Kong
Salary
Salary:
Not provided
Forvis Mazars
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree holder in Information Technology or related discipline
  • At least 1-2 years of IT audit experience in Audit or consulting firms
  • Professional experience as an internal employee working on IT risk or IT compliance related function
  • Member or finalist of professional qualification preferred such as CISA, CISSP or CISM (either one only), HKICPA, ACCA, CPAA
  • Fluency in spoken English and Cantonese
  • Putonghua is a must
  • Good written presentation skills in both English and Chinese
  • Logical thinker with good interpersonal and communication skills
  • Willing to travel (more than 50%) and ability to work diligently under pressure
Job Responsibility
Job Responsibility
  • Learn and build your knowledge on how to conduct IT audit over general/ application controls, network security, cybersecurity, blockchain platform operations, and apply Computer Assisted Auditing Technique ('CAAT') for data verification, cyber hacking incident investigation
  • Contribute to execution of IT-related risk assessments in the following areas: cybersecurity, IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cloud and third party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements
  • Obtain good understanding of IT infrastructure, programs, networks and database, IT security, identify areas of improvement and make recommendations
  • Work with client management team to assist in implementation of new processes and controls to address key risks, as necessary
  • Draft comprehensive executive summaries and final reports for delivery to client senior management and document and review engagement workpapers in accordance with standard Forvis Mazars and industry-accepted methodologies
  • Assist in kickoff, status, and closing meetings with engagement team and client and contribute to technology risk knowledge base and internal practice development initiatives
What we offer
What we offer
  • Medical and dental insurance
  • Life insurance
  • 5-day working week
  • Discretionary performance bonus
  • Birthday leave
  • Marriage leave
  • Employee activities
  • Fulltime
Read More
Arrow Right

Senior IT Enterprise Architect/Strategist

We are seeking a highly accomplished Senior IT Enterprise Architect/Strategist w...
Location
Location
Canada , Toronto
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
August 27, 2026
Flip Icon
Requirements
Requirements
  • Minimum of 5+ years of hands-on professional experience serving as a Lead Solution Engineer, Infrastructure Architect, or Systems Specialist explicitly dedicated to the Oracle Enterprise Manager (OEM) software stack
  • 3+ years of dedicated technical experience developing within 13c OEM environments, with a verified background in custom performance profiling, log auditing, and programmatic alerting configuration
  • 3+ years of direct, practical experience engineering and optimization within Oracle database environments (including Oracle 19c/12c lines)
  • 5+ years of verified professional experience designing, setting up, and provisioning active-active multi-data center configurations and high-availability clustered architectures
  • Advanced, practical understanding of TLS/SSL network bindings and Public Key Infrastructure (PKI) lifecycle management within complex Single Sign-On (SSO) application structures
  • Outstanding capability to translate abstract business models into clear logical and physical documentation, design specs, and infrastructure build guides
  • Exceptional consultative communication and analytical presentation skills, with a track record of articulating complex architectural bottlenecks and option paths to both technical engineering squads and non-technical managers
Job Responsibility
Job Responsibility
  • Lead the modeling, design, and end-to-end implementation of secure, scalable Oracle infrastructure solutions, transforming conceptual blueprints into verifiable logical and physical application architectures
  • Partner with core engineering squads to design, configure, and execute the structural platform upgrade of Oracle Enterprise Manager (OEM) from version 13c to 24ai
  • Programmatically construct automated monitoring metrics, deep-packet system telemetry, and corresponding threshold alert criteria within the OEM suite to optimize system reliability
  • Architect, test, and deploy resilient, multi-data center active-active configurations to ensure zero-downtime failover and seamless platform data replication
  • Enforce strict perimeter defense mechanisms across Single Sign-On (SSO) transaction routes, configuring advanced TLS/SSL cryptographic parameters, certificate pinning, and Public Key Infrastructure (PKI) layouts
  • Manage complex data routing, directory schema extensions, and application linkage patterns across Oracle 19c databases, Oracle Unified Directory (OUD), Oracle Access Manager (OAM), and Microsoft Active Directory
  • Act as the primary technical authority aligning Database Administrators (DBAs), Red Hat OpenShift engineering squads, and network security divisions to execute clean systems migrations
  • Author detailed physical architecture schemas, low-level deployment manuals, structural integration guides, and clear options analysis papers for executive stakeholder boards
Read More
Arrow Right

It Audit Specialist

We are looking for an experienced IT audit specialist to support a passwordless ...
Location
Location
United States , Cincinnati
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience performing technology audits with direct involvement in authentication, identity, or access control reviews
  • Strong understanding of passwordless authentication methods and the risks, control considerations, and testing approaches associated with them
  • Hands-on knowledge of Microsoft Active Directory and supporting infrastructure or networking concepts relevant to authentication services
  • Experience evaluating IT application controls, IT general controls, and audit findings in enterprise environments
  • Ability to create structured audit programs, document test results, and communicate issues in a clear and concise manner
  • Familiarity with recognized audit and control frameworks, including COBIT
  • Background at the Manager, Senior Consultant, or comparable senior delivery level within audit or advisory engagements
Job Responsibility
Job Responsibility
  • Lead and support audit activities focused on passwordless authentication controls, including planning, walkthroughs, testing, and documentation
  • Evaluate authentication processes across infrastructure and directory services to identify control gaps, risks, and areas requiring remediation
  • Review Microsoft Active Directory configurations and related access controls to assess alignment with security and audit expectations
  • Analyze IT application controls and broader IT general controls that support identity, access, and authentication processes
  • Partner with stakeholders to gather evidence, clarify technical configurations, and validate how passwordless authentication is implemented in the environment
  • Develop clear audit observations, risk summaries, and supporting workpapers that can be used for reporting and follow-up activities
  • Apply audit frameworks and control standards, such as COBIT and ITGC principles, when assessing the effectiveness of the control environment
  • Contribute subject matter expertise during Q3 audit execution and provide practical recommendations to strengthen authentication governance and control maturity
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right

Cybersecurity & Infrastructure Audit Lead

We are seeking a seasoned Cybersecurity & Infrastructure Audit Lead to drive end...
Location
Location
Singapore , Singapore
Salary
Salary:
168000.00 - 192000.00 SGD / Year
eamesconsulting.com Logo
Eames Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 12 years of experience in IT audit, cybersecurity, or technology risk within Big 4, consulting firms, or large enterprises
  • Proven track record in team management, including coaching, performance management, and resource planning
  • Strong knowledge of IT audit methodologies, risk and controls, and cybersecurity frameworks
  • Experience in auditing or working with infrastructure, cloud environments, and modern technology landscapes
  • Strong stakeholder management skills with experience engaging senior management and audit committees.
Job Responsibility
Job Responsibility
  • Lead and manage a team of IT auditors, ensuring high-quality delivery of audit and advisory engagements while developing team capabilities
  • Plan and execute risk-based audits across cybersecurity, IT infrastructure, cloud, DevSecOps, and emerging technologies
  • Provide advisory across the system development lifecycle (SDLC), including pre- and post-implementation reviews of controls and security frameworks
  • Engage senior stakeholders and committees, presenting audit findings, insights, and recommendations on technology risk and resilience.
What we offer
What we offer
  • Leadership role with high visibility to senior stakeholders
  • Opportunity to shape cybersecurity and infrastructure audit strategy
  • Exposure to emerging technologies including AI, cloud, and automation
  • Collaborative and forward-looking work environment.
  • Fulltime
Read More
Arrow Right

Senior Security Solution Architect (Pre-sales)

The Senior Security Solutions Architect at NTT DATA is a pivotal role focused on...
Location
Location
United States of America , Remote
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Advanced hands-on experience designing, implementing, integrating, and troubleshooting solutions from: Cisco (Firepower, ASA, ISE, Umbrella, SecureX, VPN solutions), Palo Alto Networks (NGFW, Panorama, GlobalProtect, Prisma Access/Cloud), Fortinet (FortiGate, FortiManager, FortiAnalyzer, FortiAuthenticator, SD-WAN), Check Point (Quantum Security Gateway, Management Server, CloudGuard, Infinity)
  • Experience with secure network design, segmentation, threat prevention, IPS/IDS, URL filtering, and advanced malware protection
  • Experience integrating logging, monitoring, and SIEM/SOAR systems
  • Experience with secure remote access, VPN architecture, and Zero Trust design
  • Experience integrating solutions into hybrid/multi-cloud environments (AWS, Azure, GCP)
  • Experience in client-facing security consulting, including requirements gathering and risk analysis
  • Experience working in Agile or DevSecOps environments preferred
  • Demonstrated ability to develop and deliver security-focused technical solutions for enterprise clients
  • Bachelor's degree in computer science, engineering, cybersecurity, or related field (or equivalent experience)
  • Strongly preferred certifications: Cisco: (CCNP Security, CCIE Security, CyberOps) and/or Palo Alto Networks: (PCNSA, PCNSE) and/or Fortinet: (NSE4-NSE7 (especially NSE5-NSE7)) and /or Check Point: (CCSA, CCSE, CCSM)
Job Responsibility
Job Responsibility
  • Contributes to the development of complex security-centric solution architectures across business, infrastructure, application, and cloud environments
  • Identifies and evaluates alternative security architectures and analyzes trade-offs in risk reduction, cost, performance, and scalability
  • Produces specifications for cloud or on-premises components with an emphasis on security controls, identity and access management, encryption standards, network segmentation, and compliance requirements
  • Designs components using modelling techniques that incorporate security-by-design principles, Zero Trust concepts, and industry frameworks (e.g., NIST CSF, ISO 27001)
  • Creates multiple design views for stakeholder concerns, including non-functional security requirements, and develops security proof-of-concepts (POCs)
  • Supports change programs with technical planning aligned to enterprise security architecture standards and regulatory requirements
  • Ensures solutions meet data protection and cybersecurity obligations (GDPR, HIPAA, PCI-DSS, SOC 2)
  • Leads understanding of client security requirements, gathers and analyzes threat/risk data, and provides expert remediation guidance
  • Advises clients on security modernization, cloud security, secure application design, and emerging cybersecurity practices
  • Recommends new security services and contributes to security go-to-market offerings
  • Fulltime
Read More
Arrow Right

Security Compliance Consultant - VOIS

We are seeking a Security Compliance Consultant (CHARM) to act as a senior autho...
Location
Location
India , Pune
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • An experienced professional with 12+ years in Information Security Governance, Risk and Compliance (GRC), ideally within complex, multi-market environments
  • Highly knowledgeable in security governance models, control frameworks, and end-to-end compliance lifecycle management
  • Experienced in leading audit and assurance engagements, including regulatory and internal reviews
  • Skilled in stakeholder collaboration across diverse technical and business functions
  • Knowledgeable in IT service management principles (ITIL) and their integration with security controls
  • Technically informed across infrastructure, operating systems, middleware, and cloud environments from a governance perspective
  • Able to translate high-level security requirements into actionable compliance outcomes
  • Detail-oriented, organised, and capable of managing multiple priorities simultaneously
  • A confident communicator, able to engage effectively with senior stakeholders
  • Fluent in spoken and written English
Job Responsibility
Job Responsibility
  • Ensure compliance with Vodafone Cyber Security Baseline requirements and the CHARM control framework, providing clear interpretation of policy intent and applicability
  • Drive lifecycle management of security controls, including hardening, patching, and vulnerability management across IT, cloud, and network domains
  • Oversee and enhance control assurance practices, including assessment methodologies, effectiveness reviews, and evidence validation
  • Contribute to internal and external audits (e.g. Internal Audit, Group Cyber Assurance), supporting evidence preparation, remediation tracking, and clarifications
  • Provide governance input for systems in development or undergoing change, ensuring alignment with baseline security requirements
  • Develop, maintain, and present compliance dashboards, metrics, and trend analysis to support risk-based decision-making
  • Participate in cyber risk assessments, identifying risks, defining mitigation actions, and tracking progress
  • Collaborate with stakeholders across Technology, Architecture, and Service Ownership to address control gaps and prioritise remediation
  • Improve compliance maturity through standardisation, automation, and continuous process optimisation
What we offer
What we offer
  • Opportunity to influence enterprise-wide cyber security strategy and compliance maturity
  • Exposure to global audit, assurance, and regulatory environments
  • Collaboration with senior stakeholders across technology and security domains
  • Involvement in large-scale transformation, automation, and standardisation initiatives
  • A role that blends strategic thinking with practical execution in cyber risk and compliance
Read More
Arrow Right

Cyber Security Principal Consultant

Our client is recruiting for a Cyber Security Principal Consultant to join their...
Location
Location
United Kingdom , London or Birmingham
Salary
Salary:
55000.00 - 65000.00 GBP / Year
brosterbuchanan.com Logo
Broster Buchanan
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience of working in professional services firms
  • Demonstrable experience of delivering and leading cyber security advisory and offensive security testing engagements
  • Demonstrable experience of delivering advisory engagements relevant to security operations and defensive controls
  • Understand technology trends, cyber threats, and industry issues
  • Proficient in report writing
  • Experience with security testing techniques such as threat modelling, reconnaissance, social engineering, enumeration, attack path mapping, exploitation, and clean up from a variety of adversarial perspectives (white/grey/black box testing)
  • Proficient in infrastructure and web application testing
  • Proficient in using common commercial and open-source penetration testing tool sets including Kali Linux, Metasploit, Nmap, BurpSuite, Nessus and other industry standard tools
  • Hold an industry recognised certification (this can be at any level from Offensive Security Certified Professional (OSCP)
  • CompTIA PenTest+
Job Responsibility
Job Responsibility
  • Contributing towards the development of exciting new market facing cyber security products and services and internal knowledge sharing hubs
  • Delivering cyber security engagements, from scoping through to delivery, debriefs and report writing
  • Supporting the development of other members of the team
  • Representing the client in external meetings, including attendance at client workshops, audit committees, and regional networking events
  • Building trusted relationships with senior client stakeholders and identifying client and service opportunities
  • Assisting in managing, delivering and leading cyber engagements across a diverse portfolio of clients across the breadth of the mid-market, ensuring both excellent client service and identification of further work opportunities
  • Managing the delivery of agreed work activities with a primary focus on technical security including offensive security services (OSCP, CompTIA PenTest+)
  • Fulltime
Read More
Arrow Right