CrawlJobs Logo

Senior Security Auditor

nttdata.com Logo

NTT DATA

Location Icon

Location:
Vietnam , Ha Noi

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The Senior Security Auditor at NTT DATA will lead the global supply chain security audit program, focusing on coordinating and executing audits, maintaining audit calendars, and producing operational reports.

Job Responsibility:

  • Own day-to-day operations of the global supply chain security audit program, ensuring overall quality control and adherence to customer requirements
  • maintain and continuously update the audit calendar
  • coordinate scheduling with internal stakeholders and third‑party partner sites (e.g., contract manufacturers)
  • plan and execute on-site or virtual audits as required
  • manage audit logistics, evidence requests, meeting agendas, and pre-audit readiness activities
  • assess partner-site network topology and configuration against defined security requirements
  • document gaps, risks, and recommendations
  • produce high-quality audit reports, including findings, severity/risk rationale, and Corrective Action Plans (CAP) where applicable
  • review submitted audit results (from internal/partner contributors) for accuracy, completeness, and quality
  • drive rework where needed
  • track remediation actions and open items
  • coordinate with audit teams and partner-site IT teams to drive timely closure of security gaps and remediation bugs
  • upon request, conduct supply-chain related data security risk assessments and provide written reports with mitigation recommendations
  • may include mock ISMS/ISO 27001 readiness audits
  • support planning and coordination for new security implementations by aligning stakeholders, timelines, and required actions
  • develop slide decks and support kick-off and executive update presentations for partner sites and program stakeholders
  • provide light security operations coordination support
  • deliver regular operational reporting
  • prepare operational forecasts
  • serve as a country or site lead point of contact when assigned
  • maintain strict confidentiality of customer and site information
  • adhere to customer and site IT policies and procedures

Requirements:

  • 6–10+ years of experience in security auditing, security assurance, GRC, or security assessments
  • experience with third‑party/vendor or supply-chain audits is highly preferred
  • demonstrated experience running audit program operations: scheduling, readiness, evidence management, reporting, CAP creation, and remediation tracking to closure
  • working knowledge of ISO/IEC 27001 (ISMS) and common security control domains
  • ability to perform readiness reviews and control mapping
  • solid understanding of enterprise networks and security fundamentals to review network topology/configuration and identify control gaps
  • strong stakeholder management and communication skills
  • able to engage with cross-functional internal teams and partner-site IT teams across geographies
  • excellent written English skills with proven ability to produce structured audit reports, executive summaries, KPIs, and forecasts
  • comfortable working across time zones and managing multiple sites/workstreams
  • highly organized and detail-oriented
  • willingness and ability to travel domestically and internationally as required

Nice to have:

  • CISA
  • CISSP
  • ISO/IEC 27001 Lead Auditor/Lead Implementer (or equivalent)
  • additional relevant certifications in risk management, audit, or security frameworks

Additional Information:

Job Posted:
April 25, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
NTT DATA - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Security Auditor

Senior Auditor

The Senior Auditor is an intermediate level role responsible for performing mode...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Internal Audit or Risk Management Financial Services experience working within a global model and cross-regional teams
  • understanding and coverage of Securities Services business advantageous
  • clear and concise written and verbal communication
  • excellent soft skills to interact and manage senior stakeholder relationships
  • effective negotiation skills
  • effective project management skills
  • ability to operate with a limited level of direct supervision
  • independence of judgment and autonomy
  • related certifications (CPA, ACA, CFA, CIA, CISA or similar) preferred
Job Responsibility
Job Responsibility
  • Perform moderately complex audits including drafting audit reports, presenting issues to the business, and discussing practical solutions
  • draft audit reports and present issues to the business while discussing practical cross-functional solutions
  • complete assigned audits within budgeted timeframes, and budgeted costs
  • monitor, assess, and recommend solutions to emerging risks
  • contribute to the development of audit processes improvements, including the development of automated routines
  • apply internal audit standards, policies, and regulations to provide timely audit assurance and influence audit scope
  • develop effective line management relationships to ensure strong understanding of the business
  • appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citi, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency
What we offer
What we offer
  • Exposure to many parts of the business
  • opportunity to use technical skills in a different way
  • opportunity to build and develop an in-depth knowledge within Internal Audit
  • drive your career forward
  • equal opportunity employer policies
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

We’re looking for a Senior Security Engineer to join the Platform Team at Flanks...
Location
Location
Spain , Barcelona
Salary
Salary:
50000.00 - 70000.00 EUR / Year
flanks.io Logo
Flanks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep experience in ethical hacking, pentesting, and secure software design
  • Strong knowledge of Python, JavaScript, Kubernetes, and GCP
  • Ability to understand code, automate security tasks, and design scalable defenses
  • Hands-on with cloud security, appsec, and infra security
  • Self-driven, curious, and collaborative — a true security builder
  • Professional proficiency in both English and Spanish to collaborate effectively in our bilingual environment
Job Responsibility
Job Responsibility
  • Continuously evolve our tools, practices, and culture of security
  • Lead security initiatives across our stack (apps, infrastructure, and processes)
  • Perform pentesting, vulnerability assessments, and incident response
  • Define and implement security controls derived from business processes
  • Collaborate with teams to design secure architectures and validate security requirements
  • Work with auditors and clients to communicate our security posture clearly
What we offer
What we offer
  • A cool office between Sants Estació and Plaça Espanya with stunning views of Barcelona
  • Flexible working hours and hybrid work options
  • Paid day off on your birthday
  • Weekly fresh fruit, coffee, and tea on tap
  • Friday happy hours after our all-hands meetings
  • Team-building events to bond and have fun
  • Health insurance and flexible compensation with Alan
  • A digital canteen, thanks to Nora Real Food, subsidised at 50%
  • A yearly training budget to keep growing
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

We’re looking for an experienced security engineer to join our highly collaborat...
Location
Location
Canada; United States
Salary
Salary:
143000.00 - 210000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5+ years of combined experience in security, GRC, risk, or a related space with hands-on technical work building automation solutions as they relate to compliance controls, evidence, GRC platforms, etc.
  • experience in effectively analyzing data and programs for security risk, compliance, and maturity
  • willingness to wear different hats and work on areas where needed
  • must excel in communication, and demonstrate the ability to explain technical security concepts to a non-technical audience
  • must have a highly collaborative and teamwork-focused approach, as well as a heart for mentoring and leveling up your teammates
  • must be able to assess and mitigate corporate risk within the organization
  • sophisticated program/project management abilities
Job Responsibility
Job Responsibility
  • Own, design and manage the continued enhancement of various GRC programs including but not limited to strategy, roadmap, and controls to address regulatory requirements across multiple jurisdictions
  • communicate our compliance framework and various program requirements to all relevant stakeholders (internal and external)
  • engage cross-functionally with groups such as Engineering, Finance, Legal, Product, and Sales to establish a thoughtful, strategic and tactical approach to multiple GRC programs and related processes
  • assist with analysis and preparation for internal and external audits
  • accurately and effectively communicate our compliance position and programs to auditors and customers
  • partner with other members of the security team to establish security guidelines that enable the organization to move fast in a safe and secure manner
  • operate as a technical leader by helping define the GRC roadmap and by leveling up junior employees
  • build strong relationships with partner and stakeholder teams in order to build a scalable GRC program
What we offer
What we offer
  • Maternity and parental leave top-up programs
  • wellness spending allowance
  • generous PTO policy
  • company-wide wellness days off scheduled throughout the year
  • wellness coach membership
  • comprehensive health coverage
  • company equity for all full-time employees
  • retirement matching program
  • training budget, 1Password University access, and learning sessions
  • free 1Password account (and friends and family discount!)
  • Fulltime
Read More
Arrow Right

Senior Information Security Compliance Analyst

We're looking for a technically grounded Senior IS Compliance Analyst who speaks...
Location
Location
United States , Chicago
Salary
Salary:
90000.00 - 130000.00 USD / Year
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience in technical security roles such as Security Operations, Incident Response, Security Analysis, penetration testing, or similar
  • Practical knowledge of security tools, SIEM platforms, vulnerability management, and security monitoring
  • and ability to read and understand security logs, configurations, and technical documentation
  • 6+ years of total experience with significant time in GRC
  • Working knowledge of ISO 27001, NIST frameworks, SOC 1/2, and GDPR requirements
  • Experience developing and implementing information security policies and controls
  • ISO 27001:2022 Lead Implementer and Lead Auditor certification
Job Responsibility
Job Responsibility
  • Lead technical security assessments and integration of acquired companies, mapping their security architectures and controls to our GRC frameworks, identifying gaps, and building remediation roadmaps that address both technical security and compliance alignment
  • Bridge technical security and business stakeholders by evaluating risks through a technical lens, working alongside security engineering teams to translate GRC requirements into practical security measures, and communicating effectively across technical and non-technical audiences
  • Develop and harmonize security policies and control frameworks across acquired entities, ensuring they're both audit ready and operationally sound, while translating between technical security requirements and governance documentation
  • Own customer security questionnaire responses by leveraging your hands-on security background to provide detailed, accurate answers and collaborating with infrastructure, application security, and operations teams to gather technical evidence
  • Drive continuous improvement of our GRC program through technical security enhancements, meaningful security and compliance metrics, and process improvements that increase both control effectiveness and operational efficiency
What we offer
What we offer
  • health and welfare benefits
  • tuition assistance
  • 401K savings and other retirement programs
  • employee assistance programs
Read More
Arrow Right

Senior Information Security Officer

Senior Information Security Officer (ISO Sr. Analyst - AVP) is an intermediate l...
Location
Location
Turkey , Istanbul
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant experience
  • Strong knowledge of local regulations (BRSA) and cybersecurity principles
  • Proficient in interpreting and applying policies, standards and procedures
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Preferably holding IT/security certifications such as CISA, CISM, CISSP, CRISC, CEH or similar
  • Follows cybersecurity trends
  • Bachelor’s degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Address security issues identified in the various information security programs
  • Review and address issues identified within various Information Security (IS) programs and ensure all IS issues related to Internal Audit, and External Auditors are closed by their original target date
  • Improve the efficacy of governance processes by identifying risks, monitoring controls, and remediating issues
  • Establish cross-sector working relationships and complete weekly awareness discussions with local team to efficiently tackle security issues
  • Ensure risk exceptions are raised, registered and closed on a timely basis and communicate updates and changes to the global standards
  • Complete Risk Assessment process, including completing accurate inventory reporting, data classification, threat analysis, and action plans
  • Test and validate that the business complies with applicable IS requirements
  • develop and implement IS policies and procedures
  • Determine and validate appropriate level of controls are being implemented to safeguard sensitive data
  • Develop Corrective Action Plans for all Information Security-related gaps and approve all closures through reviewing evidence to ensure each closure meets Citi Requirements
  • Fulltime
Read More
Arrow Right

Senior Auditor - Cyber & Infrastructure IA

The Senior Auditor is responsible for performing moderately complex audits and a...
Location
Location
Canada , Mississauga
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant experience in Cyber or Information Security Risk or Audit Roles
  • Professional Certification preferred (CISA, CISSP, CIA, CPA, etc.)
  • Experience working with Excel, array formulas and integrating with external data sources
  • Experience with data in Access and integrating with external data sources and Excel tools
  • Effective verbal, written, and negotiation skills
  • Effective project management skills
  • Effective influencing and relationship management skills
  • Experience in data quality and governance analysis
  • Strong data analytics skills
  • Demonstrated ability to remain unbiased in a diverse working environment
Job Responsibility
Job Responsibility
  • Complete assigned audits within budgeted timeframes, and budgeted costs
  • Monitor, assess, and recommend solutions to emerging risks
  • Contribute to the development of audit process improvements, including the development of automated routines to help focus audit testing
  • Draft audit reports, and present issues to the business while discussing practical cross-functional solutions
  • Recommend appropriate and pragmatic solutions to risk and control issues
  • Apply understanding of internal audit standards, policies, and local regulations to provide timely audit assurance
  • Develop internal audit staff, and provide coaching to team members
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of others and create accountability with those who fail to maintain these standards
  • Fulltime
Read More
Arrow Right

Senior Information System Security Officer

Come join our growing team and make a difference every day! AnaVation is seeking...
Location
Location
United States , Washington
Salary
Salary:
Not provided
anavationllc.com Logo
AnaVation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, or a related field
  • Minimum of six (6) years of hands-on experience in cybersecurity and expert knowledge of Governance Risk and Compliance
  • At least three (3) years supporting and maintaining system authorizations for complex systems
  • Demonstrated expertise in the Risk Management Framework (RMF), NIST SP 800-53 Rev 5, and related federal cybersecurity policies
  • Extensive experience managing ATO/ATT processes, security control assessments, POA&M lifecycle, vulnerability management, and audit response
  • Strong leadership experience mentoring junior and mid-level ISSOs and interfacing with senior government leadership
  • Must possess at least two of the following active certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Governance, Risk and Compliance (CGRC), Certified in Risk and Information Systems Control (CRISC), Information Systems Security Management Professional (ISSMP), Certified Information Systems Auditor (CISA), Certified Cloud Security Professional (CCSP), Certified Ethical Hacker (CEH), CompTIA Security+, Project Management Professional (PMP)
  • Proficiency in tools such as JCAM, Tenable Nessus, BigFix and Splunk
  • Ability to develop, review, and present high-level security documentation and briefings
  • Strong understanding of cloud platforms (IaaS, PaaS, SaaS), supply chain risk management, and incident response procedures
Job Responsibility
Job Responsibility
  • Support the maintenance of security documentation and support system ATO and ATT efforts
  • Conduct security control assessments and provide recommendations for remediation
  • Perform biweekly audit log and vulnerability scan reviews and track POA&M items
  • Collaborate with system owners and technical teams to manage risk and respond to incident
  • Support Ongoing Authorization (OA) and continuous monitoring activities
  • Prepare and brief senior leadership on system security posture and compliance metric
  • Ensure alignment with cybersecurity policies and NIST SP 800-53, 800-37, and 800-137
What we offer
What we offer
  • Generous cost sharing for medical insurance for the employee and dependents
  • 100% company paid dental insurance for employees and dependents
  • 100% company paid long-term and short term disability insurance
  • 100% company paid vision insurance for employees and dependents
  • 401k plan with generous match and 100% immediate vesting
  • Competitive Pay
  • Generous paid leave and holiday package
  • Tuition and training reimbursement
  • Life and AD&D Insurance
  • Fulltime
Read More
Arrow Right

Senior IT Auditor

Assurit is currently seeking an experienced Senior IT Auditor to support one of ...
Location
Location
United States
Salary
Salary:
Not provided
assurit.com Logo
Assurit
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Systems, Computer Science, Accounting, Business, or related field
  • or equivalent professional experience
  • 7+ years of hands-on experience conducting IT audits in enterprise, government, or regulated environments
  • Strong knowledge of generally accepted IT audit standards, principles, and practices (e.g., GAO FISCAM, NIST, COBIT, ISO, FISMA)
  • Proficiency evaluating IT security and control practices, including access management, configuration management, change management, and incident response
  • Experience auditing diverse technology platforms such as Windows, Linux, databases, and enterprise applications
  • Strong analytical and problem-solving skills with the ability to assess complex environments and translate findings into actionable insights
  • Exceptional written and verbal communication skills, including the ability to produce clear audit documentation
  • Strong organizational abilities, attention to detail, and experience preparing structured audit workpapers
Job Responsibility
Job Responsibility
  • Evaluate IT controls across diverse systems and platforms, identifying gaps and recommending risk-based improvements
  • Review security configurations, installation procedures, and control environments for operating systems, databases, applications, and supporting technologies
  • Identify process or technical problems and propose effective remediation strategies
  • Develop audit plans, prepare audit test procedures, and perform audit testing aligned with established methodologies
  • Analyze audit results, determine control effectiveness, and document findings with clarity and precision
  • Produce structured audit workpapers, findings, and supporting documentation to ensure efficient, repeatable, and compliant reviews
  • Collaborate with stakeholders to explain audit observations, discuss risk implications, and validate corrective actions
  • Apply recognized IT audit, security, and control frameworks to support audit execution and reporting
  • Assist in the continuous enhancement of audit strategies, methodologies, and tools
What we offer
What we offer
  • medical and dental coverage
  • paid time off
Read More
Arrow Right
Remote jobs Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog Salaries Tools About Us FAQ Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy