- Home
- Jobs
- Confidential Company
- IT Security Audit and Compliance Specialist
IT Security Audit and Compliance Specialist
Job Description Roles & Responsibilities Job Summary. The IT Security Audit and Compliance Specialist plays a critical role in maintaining the organization’s cybersecurity and data protection posture. This role involves developing, executing, and maintaining robust audit programs to ensure compliance with internal policies, regulatory requirements, and industry standards, particularly within the healthcare sector. Job Responsibilities- Develop and manage a comprehensive security audit program to ensure thorough coverage across all business units. Oversee cybersecurity, data protection, and privacy compliance across healthcare entities, insurance providers, and partners. Conduct regular compliance maturity assessments and reviews to track progress and posture improvement. Plan, coordinate, and execute security audit activities across departments. Define audit scopes, objectives, and develop tailored audit work plans and test procedures. Conduct audits on critical systems and applications to validate security and compliance effectiveness. Ensure alignment with legal, regulatory, and contractual compliance obligations. Build and maintain a comprehensive controls matrix mapped to relevant frameworks such as ISO, NIST, HIPAA, etc. Prepare detailed audit findings, compliance reports, and progress updates for senior management. Identify compliance risks related to key business initiatives and recommend mitigation measures. Monitor internal compliance efforts, including IT system reviews, vulnerability scans, and mandatory training programs. Prepare and submit timely audit documentation, findings, and evidence. Schedule and conduct periodic audits across systems, networks, and applications, including Azure Cloud, O365, IAM, and PAM environments. Monitor Data Loss Prevention (DLP) compliance and follow up with responsible teams for remediation. Collaborate with IT operations and business units to ensure timely resolution of non-compliance issues and vulnerabilities. Provide recommendations to address and mitigate identified critical risks. Liaise with external and internal audit teams and ensure all evidence and documentation are prepared and submitted promptly. Work with business units (Finance, HR, Projects, etc.) to gather inputs necessary for audits. Track and ensure timely closure of audit findings and implementation of recommendations. Monitor the resolution of prior audit issues to ensure continuous improvement. Desired Candidate Profile Job Requirements- Bachelor’s degree in Information Technology, Cybersecurity, or a related field; with continued professional development in auditing or compliance. 10+ years of experience in IT security audits, risk assessment, and regulatory compliance. Strong knowledge of cybersecurity standards and frameworks (e.g., ISO 27001, NIST, GDPR, HIPAA, etc.). Experience conducting audits in cloud environments (e.g., Azure), and enterprise systems such as IAM, PAM, and Office 365. Skilled in compliance monitoring tools, audit planning, and reporting. Strong analytical, problem-solving, and communication skills. Experience working in or auditing healthcare environments is preferred. Employment Type Full Time Company Industry PharmaBiotechClinical Research Department / Functional Area IT Software Keywords IT SecurityRisk AssessmentRisk ManagementGRCGDPRISO 27001HIPAANISTAzureCyber SecurityIAMPAM Get real-time job updates only on our App
Ready to apply?
You are viewing this role on JobSphere AI. Applications are completed on the original employer / source website.
Apply NowOpens the employer's site in a new tab
- CompanyConfidential Company
- LocationDubai - United Arab Emirates (UAE)
- CategoryCybersecurity
- SourceNaukrigulf
- Listed2 months ago
Related Cybersecurity jobs
Manager Digital Products, Marine Services
Responsible for the end-to-end development, integration, lifecycle management, and continuous enhancement of digital products, OT-enabled maritime solutions…
Jira & Confluence Cloud Migration Lead Administrator
What if you led one of NeoXam's most strategic transformation projects? We are looking for a Jira & Confluence Cloud Administrator (M/F) to lead the migration…
Cloud SOC Design Consultant
Connect to your opportunity As a Cloud SOC Design Consultant , you will be responsible for the overall design and continuous improvements of our Next-Gen…
Fullstack Developer NuxtJS / Java Spring Boot
We are looking for a Senior Fullstack Developer proficient in NuxtJS for the front-end and Java Spring Boot for the back-end, with experience in Cloud…