IT Security Audit Consultant – Internal Audit & Secure Development – 17060

Assignment Description

We are looking for a senior IT Security Audit Consultant

What You Will Work On

• Identify relevant audit areas and IT security risks
• Participate in interviews with business, IT, and security stakeholders
• Review documentation such as policies, security requirements, and test results
• Assess how identified vulnerabilities and risks are managed and followed up
• Evaluate how findings are fed back into development and maintenance processes
• Analyze compliance with security standards and best practices
• Contribute to audit reports with observations, recommendations, and conclusions
• Collaborate closely with internal audit teams using structured methodologies

What You Bring

• Senior experience in IT security within system development environments
• Proven experience in audit, review, or investigative work
• Ability to combine technical expertise with a structured audit approach
• Strong understanding of Secure SDLC and application security
• Practical and theoretical knowledge of security testing, especially penetration testing
• Knowledge of common vulnerabilities and attack methods (e.g., OWASP)
• Experience reviewing policies, requirements, and security test results
• Ability to identify risks, assess compliance, and provide structured conclusions
• Familiarity with frameworks such as ISO 27001 and NIST
• Experience conducting interviews with both technical and business stakeholders
• Ability to work according to established internal audit methodologies
• Strong analytical, communication, and documentation skills

If this sounds interesting, please send your CV to