Senior Internal IT Auditor

Client of Stellar Hunters

We are seeking a seasoned Senior Internal IT Auditor to join the Internal Audit team and provide independent, objective assurance over the company s IT controls, risk management, and governance processes. The successful candidate will plan and execute IT audit engagements across applications, infrastructure, cloud, identity and access management, change management, and third-party services. This role will collaborate with IT, Security, Risk, Compliance, and business stakeholders to identify control gaps, recommend practical remediation, and drive improvements that support business objectives and regulatory requirements.

Key Responsibilities

Audit Planning & Execution

• Plan, scope, and execute IT audit engagements using a risk-based approach, including development of audit programs, testing plans, and workpapers.

• Perform detailed testing of IT general controls and application controls across cloud and on-premise environments, including change management, configuration management, and backup/recovery.

• Evaluate the design and operating effectiveness of controls related to identity and access management, privileged access, segregation of duties, and authentication mechanisms.

Risk Assessment & Control Evaluation

• Conduct IT risk assessments to identify and prioritize technology risks and control gaps that could impact confidentiality, integrity, and availability of systems and data.

• Map IT risks and controls to relevant frameworks and standards (e.g., COBIT, NIST, ISO 27001, SOC 2) and provide pragmatic control recommendations.

• Assess third-party and cloud provider controls, review vendor risk management artifacts, and perform outsourced service audits where applicable.

Reporting & Remediation

• Prepare clear, well-supported audit findings, risk ratings, and actionable remediation recommendations; draft audit reports and present results to management and audit committees.

• Work with process and technology owners to develop remediation plans, track remediation progress, and validate corrective actions.

• Coordinate with external auditors and regulators as needed to support audits and attestations.

Continuous Improvement & Advisory

• Provide advisory support on IT control design and implementation to enable operational improvements while maintaining auditor independence.

• Identify opportunities to enhance audit methodologies, testing tools, and automation to increase audit efficiency and coverage.

• Mentor junior audit staff, review their workpapers and findings, and contribute to team knowledge-sharing and training.