5,854 Security Auditor jobs in the United States

Our client is seeking an experienced and diligent Lead Information Security Auditor to join their growing team in Philadelphia, Pennsylvania, US . This pivotal role is responsible for planning, executing, and reporting on information security audits to ensure compliance with internal policies, industry regulations, and best practices. The ideal candidate will have a comprehensive understanding of cybersecurity threats, vulnerabilities, and risk management frameworks. You will lead a team of auditors, providing guidance and oversight to ensure the thoroughness and accuracy of audit procedures. This role involves assessing the effectiveness of security controls across various IT systems, applications, and networks, including cloud environments.

Key responsibilities will include developing audit plans and scopes, conducting interviews with IT personnel, performing vulnerability assessments, and analyzing security logs and data. You will be responsible for identifying security gaps, recommending remediation actions, and tracking the implementation of these recommendations. The Lead Auditor will play a crucial role in preparing detailed audit reports for management and relevant stakeholders, ensuring clarity and actionable insights. Staying current with the latest cybersecurity trends, threats, and regulatory changes is essential. This position requires strong leadership qualities, excellent analytical and problem-solving abilities, and exceptional communication skills to effectively convey complex security findings. The role operates on a hybrid model, allowing for a flexible balance between in-office collaboration and focused remote work.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 8 years of experience in information security, with at least 3 years in an auditing or compliance role.
• Professional certifications such as CISSP, CISA, CISM, or CRISC are required.
• In-depth knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001, SOC 2).
• Experience with vulnerability assessment tools and security monitoring technologies.
• Strong understanding of IT governance, risk management, and compliance principles.
• Excellent written and verbal communication skills, with the ability to present findings to both technical and executive audiences.
• Demonstrated leadership and team management capabilities.
• Experience in financial services or healthcare sectors is a plus.

Our client, a rapidly growing technology firm, is seeking a highly experienced Senior Information Security Auditor to join their fully remote team. This critical role is responsible for assessing, auditing, and ensuring the effectiveness of the company's information security controls, policies, and procedures. You will play a key part in safeguarding sensitive data, ensuring compliance with regulatory requirements, and mitigating security risks across the organization. The ideal candidate will possess a deep understanding of information security principles, risk management frameworks (e.g., NIST, ISO 27001), and various auditing methodologies. Responsibilities include planning and executing security audits, identifying vulnerabilities, and developing remediation plans. You will evaluate the security posture of IT infrastructure, applications, and third-party vendors. Experience with security testing tools, penetration testing concepts, and incident response protocols is highly valued. This role requires a meticulous approach to documentation, the ability to clearly communicate complex security findings to both technical and non-technical stakeholders, and strong project management skills to ensure audit tasks are completed efficiently and on time. Continuous monitoring of the security environment and recommending proactive measures to enhance security defenses are also key responsibilities. Staying current with emerging threats and evolving regulatory landscapes is crucial. This is an excellent opportunity for a seasoned security professional to make a significant impact in a dynamic, remote-first environment, contributing directly to the organization's security resilience and trustworthiness.

Responsibilities:

• Plan and conduct comprehensive information security audits.
• Assess security controls, policies, and procedures for compliance and effectiveness.
• Identify and document security vulnerabilities and risks.
• Develop detailed remediation plans and track their implementation.
• Evaluate IT infrastructure, applications, and vendor security practices.
• Stay updated on the latest security threats and regulatory requirements.
• Prepare clear and concise audit reports for management and stakeholders.
• Provide expert advice on information security best practices.
• Contribute to the development and improvement of security policies.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 7+ years of experience in information security, with a focus on auditing and risk assessment.
• Deep knowledge of information security frameworks (NIST, ISO 27001, SOC 2).
• Experience with security assessment tools and methodologies.
• Strong understanding of network security, application security, and cloud security.
• Relevant certifications such as CISSP, CISA, or CRISC are highly desirable.
• Excellent analytical, problem-solving, and critical thinking skills.
• Superior written and verbal communication skills.
• Proven ability to work independently and manage multiple audit projects simultaneously.

Our client is seeking a highly analytical and detail-oriented Senior Information Security Auditor to join their dedicated remote team. This role is pivotal in assessing and enhancing the security posture of the organization's information systems and processes. You will conduct comprehensive audits, identify vulnerabilities, and develop recommendations to ensure compliance with industry standards and regulatory requirements. The ideal candidate will possess extensive knowledge of security frameworks, risk management principles, and auditing methodologies. This is a fantastic opportunity for an experienced security professional to contribute to a robust cybersecurity program from a remote setting.

Key responsibilities include: planning and executing information security audits, assessing the effectiveness of internal controls and security measures, identifying and documenting security risks and control weaknesses, developing practical and actionable recommendations for remediation, preparing detailed audit reports for management, staying current with relevant regulations (e.g., GDPR, HIPAA, SOX) and best practices, collaborating with IT and security teams to implement audit recommendations, and conducting follow-up reviews to ensure remediation effectiveness. You will also contribute to the development and improvement of the internal audit program.

Qualifications:

• Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field.
• 5-7 years of experience in information security, IT auditing, or risk management.
• In-depth knowledge of security frameworks such as NIST, ISO 27001, and COBIT.
• Experience with various compliance regulations relevant to the industry.
• Proven ability to conduct risk assessments and vulnerability analyses.
• Excellent understanding of IT controls, network security, application security, and data privacy.
• Strong analytical, problem-solving, and critical thinking skills.
• Exceptional report writing and communication skills.
• Professional certifications such as CISSP, CISA, or CRISC are highly desirable.
• Ability to work independently with minimal supervision in a remote environment.
• Experience with audit management software is a plus.

This role is fully remote, allowing you to work from your home office. Our client offers a competitive salary, comprehensive benefits package, and the opportunity to work with a leading organization focused on maintaining the highest standards of information security.

Our client, a rapidly growing financial services institution, is seeking a highly skilled and experienced Senior Information Security Auditor to join their compliance and risk management team in Oklahoma City, Oklahoma, US . This pivotal role is responsible for assessing and verifying the effectiveness of our client's information security controls and ensuring adherence to regulatory requirements and industry best practices. You will play a key part in identifying vulnerabilities, mitigating risks, and enhancing the overall security posture of the organization.

Key responsibilities include planning and executing comprehensive security audits, evaluating IT security policies and procedures, and performing risk assessments across various systems and applications. You will document audit findings, develop remediation recommendations, and track the implementation of corrective actions. The ideal candidate will possess a deep understanding of information security principles, frameworks (e.g., NIST, ISO 27001, COBIT), and regulatory requirements relevant to the financial sector (e.g., SOX, PCI DSS, GLBA). Proven experience with IT general controls (ITGC) and application controls testing is essential. You should be proficient in conducting vulnerability assessments and penetration testing analysis. Strong analytical and problem-solving skills, with the ability to translate complex technical findings into clear, actionable reports for both technical and non-technical audiences, are crucial.

This role requires excellent communication and interpersonal skills, enabling effective collaboration with IT staff, management, and external auditors. You will need to demonstrate leadership qualities and the ability to guide junior auditors. Professional certifications such as CISSP, CISA, CISM, or CRISC are highly desirable. A bachelor's degree in computer science, information technology, cybersecurity, or a related field is required, along with several years of experience in information security auditing or risk management. This position offers a challenging and rewarding opportunity to contribute to the security and integrity of sensitive financial data in Oklahoma City, Oklahoma, US . Our client is committed to fostering a secure working environment and providing opportunities for professional growth. If you are a meticulous auditor with a passion for safeguarding information assets, we encourage you to apply.

Our client is seeking a detail-oriented and experienced Senior Information Security Auditor to join their compliance and risk management team. This role involves conducting comprehensive audits of information systems and security controls to ensure compliance with relevant regulations and internal policies. You will be responsible for identifying security vulnerabilities, assessing risks, and recommending corrective actions to strengthen the organization's security posture. Key responsibilities include planning and executing IT security audits, evaluating the effectiveness of controls, documenting audit findings, and preparing detailed audit reports. The ideal candidate will possess a Bachelor's degree in Information Technology, Cybersecurity, or a related field, along with significant experience in information security auditing, risk assessment, and compliance. Certifications such as CISA, CISSP, or CRISC are highly desirable. Strong knowledge of various IT security frameworks (e.g., NIST, ISO 27001) and auditing methodologies is required. Excellent analytical, problem-solving, and communication skills are essential. This hybrid role requires occasional on-site presence in **Des Moines, Iowa**, for key meetings and collaborative sessions, with the flexibility for remote work on other days. You will play a critical role in ensuring the security and integrity of our client's information assets. Join us in upholding the highest standards of information security.

**Responsibilities & Qualifications**
The CSFC Solutions Auditor would assist and support with the development, configuration, testing, and evaluation of Commercial Solutions for Classified (CSfC) solutions used to secure government customers' classified data and networks. The Engineer will work individually and as a member of a team to configure network, software, and hardware networking components and security appliances and applications to meet DoD requirements and support their installation and initialization onsite in the customers' environments.
**RESPONSIBILITIES**
+ Coordinate with the NSA CSFC PMO on all CSFC related documents and statuses.
+ Prepare documents required for NSA registration (Checklist, Annex, Deviations, ConOps, etc.)
+ Prepare daily, weekly, and monthly reports describing the task status in accordance with task order report template.
+ Review, manage, control, and maintain security audit log data
+ Document and report security-related incidents to appropriate authorities
+ Perform annual assessment of NSA capability packages checklists and Cross Domain Solution registrations
+ Performs authorization continuous monitoring on all Risk Management Framework (RMF) packages
+ Evaluate an array of IT devices (e.g. Windows, RHEL, Cisco routers, switches, firewalls, etc.) for DoD compliance using SCAP Compliance checker, ACAS, Evaluate STIG, and via manual STIG check reviews
+ Must be proficient in navigating through the eMASS application
+ Provide DoD Cybersecurity analysis and risk-based security recommendations for the CSfC system
+ Assess CSfC IAW DoDI 8500, DoDI 8510 and NISP SP 800-53
+ Review, updated and/or develop NSA registration artifacts (e.g., SSP, POA&M, MOU/MOA, topology, network architecture, PPSM, policies and procedures, HW/SW lists.) for CSFC compliance.
+ Supports CT&E or DT&E activities of system security engineering and program protection activities.
+ Identify the mitigation controls for identified risks and propose additional strategies for identified vulnerabilities
+ Support all Cross-Domain solution requirements
+ Act as the Cybersecurity Subject Matter Expert
+ Consult in other projects when needed
+ Continue education and learning new and evolving technology
+ Perform special projects and other duties assigned
**REQUIRED QUALIFICATIONS**
+ **Top Secret** OR Higher ORSecret Clearance level with completed T5 investigation
+ 5 or more years of experience in cybersecurity
+ BA/BS = 5 years; AA=7 years
+ **One of the following DoD8140 Certifications:**
+ CRISC (Certified Risk and Information Systems Control)
+ CISA (Certified Information Systems Auditor)
+ CISM (Certified Information Security Manager)
+ CISSP (Certified Information Systems Security Professional)
+ CISSP-ISSMP(Information Systems Security Management Professional)
+ CISSP-ISSAP(Information Systems Security Architecture Professional)
+ CompTIA SecurityX (formerly CASP+)
+ GSLC (GIAC Security Leadership Certification)
+ A Computing Environment Certification (e.g., Security+)
**Overview**
We are seeking a Cyber Security Auditor to join our team supporting Network Enterprise Technology Command (NETCOM) in Honolulu, HI.
TekSynap is a fast growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. "Technology moving at the speed of thought" embodies these principles - the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers.
We offer our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays.
Visit us at .
Apply now to explore jobs with us!
The safety and health of our employees is of the utmost importance. Employees are required to comply with any vaccination requirements mandated by contract, applicable law or regulation.
By applying to a role at TekSynap you are providing consent to receive text messages regarding your interview and employment status. If at any time you would like to opt out of text messaging, respond "STOP".As part of the application process, you agree that TekSynap Corporation may retain and use your name, e-mail, and contact information for purposes related to employment consideration.
**Additional Job Information**
**WORK ENVIRONMENT AND PHYSICAL DEMANDS**
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of the job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
+ Location: Honolulu, Hawaii
+ Type of environment: Office
+ Noise level: Low
+ Work schedule: CONUS Schedule is day shift Monday - Friday. May be requested to work evenings and weekends to meet program and contract needs.
+ Amount of Travel: Less than 20%
**PHYSICAL DEMANDS**
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to use hands to handle, feel, touch; reach with hands and arms; talk and hear. The employee is regularly required to stand; walk; sit; climb or balance; and stoop, kneel, crouch, or crawl. The employee is regularly required to lift up to 10 pounds. The employee is frequently required to lift up to 25 pounds; and up to 50 pounds. The vision requirements include close vision, distance vision, peripheral vision, depth perception, and ability to adjust focus.
**WORK AUTHORIZATION/SECURITY CLEARANCE**
+ United States Citizenship
+ Active Top Secret Clearance requirement
**OTHER INFORMATION**
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
TekSynap is a drug-free workplace. We reserve the right to conduct drug testing in accordance with federal, state, and local laws. All employees and candidates may be subject to drug screening if deemed necessary to ensure a safe and compliant working environment.
**WAGE INFORMATION**
Target salary range: $132K -$150KThe salary range displayed is an estimate and will be determined on several factors regarding the individual's particular combination of education, knowledge, skills, competencies and experience, as well as contract parameters and organizational requirements. The displayed salary is one component of the total compensation package for employees.
**EQUAL EMPLOYMENT OPPORTUNITY**
In order to provide equal employment and advancement opportunities to all individuals, employment decisions will be based on merit, qualifications, and abilities. TekSynap does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age, genetic information or any other characteristic protected by law (referred to as "protected status"). This nondiscrimination policy extends to all terms, conditions, and privileges of employment as well as the use of all company facilities, participation in all company-sponsored activities, and all employment actions such as promotions, compensation, benefits, and termination of employment.
**Job Locations** _US-HI-Honolulu_
**ID** _ _
**Category** _Cybersecurity_
**Type** _Regular Full-Time_

Our client, a fast-growing innovator in the decentralized finance (DeFi) space, is seeking a meticulous and highly skilled Blockchain Security Auditor to join their dedicated team in Miami, Florida, US . This role is crucial for ensuring the integrity and security of our smart contracts and blockchain protocols, protecting our users and assets. You will conduct thorough security assessments, identify vulnerabilities, and provide expert recommendations for mitigation. Responsibilities include performing static and dynamic analysis of smart contracts written in languages such as Solidity, reviewing code for common vulnerabilities (reentrancy, integer overflows, etc.), and assessing the overall security posture of our blockchain applications. You will also be involved in penetration testing and threat modeling specific to blockchain environments. The ideal candidate will have a strong understanding of blockchain technology, cryptography, and smart contract development. Proven experience in auditing smart contracts for platforms like Ethereum, Binance Smart Chain, or Solana is essential. Proficiency in security analysis tools and techniques is required. A Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field is preferred. Strong analytical and problem-solving skills, meticulous attention to detail, and excellent report-writing capabilities are crucial. You should be able to clearly communicate complex security findings to both technical and non-technical stakeholders. This is an exciting opportunity to work at the cutting edge of blockchain technology and contribute to building a more secure decentralized future. Join a team of passionate experts and make a tangible impact on the security of the crypto ecosystem.

Our client, a leading innovator in the decentralized technology space, is looking for a skilled Blockchain Security Auditor to join their fully remote team. In this critical role, you will be at the forefront of ensuring the integrity and security of cutting-edge blockchain protocols, smart contracts, and decentralized applications (dApps). Your expertise will be vital in identifying vulnerabilities, performing rigorous code reviews, and conducting penetration testing to safeguard our assets and user base. You will work closely with development teams to provide actionable insights and recommendations for security enhancements. Responsibilities include analyzing smart contract code for common and novel exploits, developing and executing comprehensive security test plans, staying abreast of the latest threats and attack vectors in the blockchain ecosystem, and contributing to the development of internal security standards and best practices. The ideal candidate possesses a deep understanding of blockchain architecture, cryptography, and common programming languages used in smart contract development (e.g., Solidity, Rust). A strong background in cybersecurity, penetration testing, or software security is required. Previous experience auditing smart contracts or blockchain-based systems is a significant advantage. Excellent analytical and problem-solving skills are essential, as is the ability to communicate complex technical findings clearly and concisely to both technical and non-technical stakeholders. This is a remote-first position, offering the flexibility to work from anywhere within the US. If you are passionate about securing the future of decentralized technologies, we encourage you to apply.

Our client is seeking a highly skilled and meticulous Blockchain Security Auditor to join their innovative team in Los Angeles, California, US . This role is crucial in ensuring the integrity and security of our blockchain platforms and smart contracts. You will be responsible for conducting comprehensive security audits, identifying vulnerabilities, and providing actionable recommendations to mitigate risks. The ideal candidate will have a deep understanding of blockchain technology, cryptography, and common security exploits within the decentralized ecosystem. Your responsibilities will include code reviews of smart contracts, penetration testing of blockchain applications, and threat modeling. You will also work closely with development teams to implement security best practices and ensure compliance with industry standards. This role requires exceptional analytical skills, a proactive approach to security, and the ability to communicate complex technical findings clearly and concisely to both technical and non-technical stakeholders. We are looking for someone who can stay ahead of emerging threats and contribute to the overall security posture of our cutting-edge projects. The ability to work collaboratively in a hybrid environment, balancing in-office and remote work, is essential.

Key Responsibilities:

• Conduct in-depth security audits of smart contracts (Solidity, etc.) and blockchain protocols.
• Perform penetration testing on decentralized applications (dApps) and associated infrastructure.
• Identify, analyze, and document security vulnerabilities and potential attack vectors.
• Develop and propose remediation strategies for identified security weaknesses.
• Collaborate with engineering teams to integrate security measures throughout the development lifecycle.
• Stay abreast of the latest trends, tools, and techniques in blockchain security and cryptocurrency threats.
• Contribute to the development of internal security policies and best practices.
• Prepare detailed audit reports for management and development teams.
• Participate in code reviews, focusing on security implications.
• Provide expert advice on cryptographic principles and secure coding practices.

Qualifications:

• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.
• Proven experience in blockchain security auditing, penetration testing, or cybersecurity.
• Strong understanding of blockchain technologies, distributed ledger technology, and consensus mechanisms.
• Proficiency in smart contract languages (e.g., Solidity, Vyper) and their common vulnerabilities.
• Familiarity with security assessment tools and methodologies.
• Excellent problem-solving and analytical skills.
• Strong communication and interpersonal abilities.
• Ability to work independently and as part of a team in a dynamic, fast-paced environment.