IT Cloud Auditor

• Conduct comprehensive cloud IT control test planning for enterprise-wide infrastructure.
• Perform reviews of control procedures and documentation, including conducting interviews to clarify processes and architectures.
• Evaluate the design effectiveness of controls to ensure they mitigate the intended risks, with a focus on population validation.
• Prepare test scripts using established templates, detailing the control narrative and referencing evidence documentation.
• Independently execute end-to-end IT controls testing, from planning and evidence gathering to documenting results and submitting reports for review.
• Identify control gaps, suggest improvements, and perform root cause and impact analysis.
• Advise business partners on IT findings, risks, and control weaknesses.
• Validate the remediation of identified findings to ensure effectiveness.
• Maintain a current understanding of the cybersecurity footprint, platform architecture, and cloud infrastructure to support the review of processes and procedures.

A Technology Risk Management team is seeking a motivated Senior Information Technology (IT) Auditor for its cloud control testing program. This role is integral to identifying and addressing compliance, financial, operational, and technology risks. The work requires proficiency in internal IT General Controls (ITGC) testing and IT auditing, with a focus on the planning and execution of cloud control testing and findings remediation., * 5+ years of experience in Technology Audit and testing IT Controls, including ITand Cloud Security.

• Demonstrated experience independently executing the full lifecycle of IT controls testing, including evaluating control design and operational effectiveness.
• Extensive experience testing cloud controls in environments such as Azure and AWS.
• Experience with control testing or audits against frameworks like PCI DSS, SOX, and SDLC.

Technical Skills:

• Ability to read and understand technical evidence such as screenshots, system logs, and scripts.
• Understanding of control frameworks such as NIST, COBIT, or COSO.
• Proven ability to work independently, meet deadlines, and produce clear, well-structured documentation.
• Experience testing cloud controls - AWS/Azure Environments
• Ability to read or write code in JSON, Python, or SQL for automation purpose

Preferred Qualifications

• CISA or CISSP certification.
• Experience in the banking or financial services industry.

Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click for more details.