Security Audit Specialist

Levy Professionals

We are looking for…

A seasoned Information Security Expert to join our client’s global security operations. In this role, you will provide critical visibility into the security posture of the client’s international vendor network. We are looking for someone with a deep analytical mindset capable of conducting end-to-end audits to safeguard major assets within a global financial environment.

About the role

As an Information Security Expert, you are responsible for managing, monitoring, and reporting on the performance and the status of the security posture of vendors. This role is specifically aimed at conducting end-to-end audits to ensure compliance, operational efficiency, and risk mitigation.

You will:

  • Perform deep-dive examinations of systems, configurations, access controls, and data flows.

  • Engage with various stakeholders including Risk, Procurement, and Contract Owners.

  • Work within a DevOps & Agile methodology in a diverse, international environment.

Responsibilities

  • Audit Planning & Scoping: Define scope, objectives, and methodology based on risk; create detailed work plans and documentation.

  • Deep-Dive Auditing & Analysis: Review security controls, SaaS applications, and cloud environments using manual evidence reviews and automated tools (SIEM, scanners).

  • Risk Identification & Assessment: Identify control weaknesses and policy deviations, documenting findings with clear evidence.

  • Reporting & Stakeholder Communication: Prepare detailed reports and present findings to technical teams and management.

  • Remediation Support & Validation: Support remediation planning and perform follow-up assessments to verify effectiveness.

  • Continuous Improvement: Strengthen internal controls, optimize tools, and share best practices with the wider organization.

Who are you?

You are a highly analytical and methodical professional who can handle multiple audits simultaneously. You are an independent worker who is structured and consistent in reporting, with the ability to translate complex technical findings into clear, actionable language for non-technical stakeholders.

Experience

  • Typically 6-8 years of experience in internal audit, security auditing, IT risk, or compliance.

  • Strong hands-on experience analyzing logs, configurations, and system behavior.

  • Proven experience in SaaS environments and cloud security is a strong plus.

  • Prior exposure to security-related posture reviews is preferred.

Profile

  • Technical Excellence: Deep understanding of IT Security controls, access governance, and frameworks (ISO 27001, SOC 2, NIST, CIS, GDPR).

  • Analytical Prowess: Exceptional attention to detail with the ability to identify patterns, anomalies, and root causes.

  • Communication: Strong documentation and presentation skills, comfortable working with cross-functional teams (Security, IT, DevOps, Compliance, Business).

  • Preferred Certifications: CISA (Certified Information Systems Auditor), ISO 27001 Lead Auditor, or CRISC.

About Levy Professionals

Since 2000 we provide professional solutions to organizations ranging from tech start-ups to global players. From our offices in Amsterdam and London we have built an international and local network of skilled employed professionals and contractors fuelled by our passion for connecting skills with projects. Over the years we have fulfilled over 1700 requirements and nowadays we consistently have 250+ professionals recruited and relocated from 14 countries allocated to various projects. Our strength is the way that we see and treat people. This will always be a key factor in our strategy for many years to come.

Upload your CV/resume or any other relevant file. Max. file size: 98 MB.