Associate Security Auditor, Security Auditor, Security Auditor II, Senior Security Auditor

 

Recruiter:

Option Consultancy Services

Job Ref:

GLI001

Date posted:

Tuesday, December 28, 2021

Location:

Johannesburg, South Africa

Salary:

TCTC


SUMMARY:
Associate Security Auditor, Security Auditor, Security Auditor II, Senior Security Auditor

POSITION INFO:

Associate Security Auditor, Security Auditor, Security Auditor II,

Senior Security Auditor 

FLSA Classification (US only)

  • Associate level is Non-Exempt
  • Security Auditors I, II & Senior are Exempt


Travel                                           

  • Must have the ability to travel up to 75%
The Security Auditor is responsible for probing the safety and effectiveness of computer systems and their related security components, i.e., IT Procedures and an information security management system. This position is also responsible for delivering detailed reports to clients on

the overall effectiveness of the system, explaining any security issues and suggesting changes and improvements.

Essential Functions (Duties & Responsibilities):                                                                

The Associate Security Auditor, under direct supervision, is responsible for: 
  • Executing and/or administering security audits that are planned by more experience staff including inspecting and evaluating financial and information systems, management procedures and security controls
  • Administering risk-focused exams for IT systems
  • Properly documenting the audit process on a variety of computing environment and
  • applications
  • Providing a written and verbal report of audit findings
  • Coordinating and working together with colleagues in other lines of services insupport of client needs for Information Security Services
  • Delivering excellent client service
  • Following, maintaining and improving standard operation procedures (SOP)
  • Achieve and maintain any required professional certification
  • Performs other duties as assigned

Security Auditor I is responsible for all the duties listed under the Associate Security

Auditor level and the following:

  • Executing security audits independently that are planned by more senior staff including inspecting and evaluating financial and information systems, management procedures and security controls; may be planning some fewer complex audits independently
  • Accurately interprets audit results against defined criteria for less complex audits
  • Working with clients to develop appropriate remediation plans
  • Supporting senior members in the sale of security auditing services
  • Performs other duties as assigned

Security Auditor II is responsible for all the duties listed under the Associate Security

Auditor and Security Auditor I and the following:

  • Planning and executing security increasingly more complex audits independently including inspecting and evaluating financial and information systems, management procedures and security controls
  • Assessing the exposures resulting from ineffective or missing control practices
  • Working with management to ensure security recommendations comply with

Company procedures

  • Supporting team technical development, through service development or research, and contributes to company technical processes overall
  • Performs other duties as assigned 
 
Senior Security Auditor is responsible for:
  • All duties listed under the Associate Security Auditor level and the following:
  • Handling the most complex assignments
  • Working as a senior subject matter expert (SME) in their field
  • Performing peer reviews on reports
  • Leading the technical development of a team, training junior members and assisting on improvements to penetration testing services
  • Managing complex security testing projects
  • Managing other team members assigned to projects
  • Performs other duties as assigned

 Required Education and Other Credentials:

  • Bachelor’s Degree in Computer Science, Information Systems, Engineering or related major from an accredited University or equivalent; or
  • Certification, formal training, experience or demonstrated competency may be evaluated and considered in lieu of the educational requirements                                                      

 One or more of the following certifications are required:

  1. Associate Security Auditor): None
  2. Security Auditor: one among ISO 27001 Lead Auditor, PCI Qualified Security Auditor (QSA), Certified Information Security Professional (CISP), Certified Information Security Auditor (CISA) or equivalent
  3. Security Auditor II: Two among ISO 27001 Lead Auditor, PCI Qualified Security Auditor (QSA), Certified Information Security Professional (CISP), Certified Information Security Auditor (CISA) or equivalent
  4. Senior Security Auditor: Certified in Risk and Information Systems Control (CRISC) plus any mandatory for level II

Required Skills/Experience:                                                                             

  •  Knowledge and/or experience with sales, scoping and client/project management
  • Working knowledge of regulatory and industry data security standards, i.e., FFIEC, HIPPA, PCI, NERC, SOX, NIST, etc.
  • Must have experience with ISO 27001/27002, ITIL and COBIT frameworks
  • Must understand Linux, Windows and UNIX operating systems, as well as MSSQL and Oracle databases
  • Knowledge of ACL, IDEA and/or similar software programs for data analysis is preferred
  • Working knowledge of Fidelis, ArcSight, Niksun, Websense, Proofpoint, BlueCoat and/or similar auditing and network defense tools is required
  • Must have a solid understanding of firewall and intrusion detection/prevention protocols and know how to employ virtualization techniques
  • Must have the ability to communicate effectively, both orally and written, with other members of the team and clients/prospective clients
  • Proficiency in Microsoft Word, PowerPoint, Excel, and Outlook
  • Must be able to deliver quality reports on time
  • Must have the ability to work both independently and as part of a team
  • Must have the ability to understand source code in C/C++, VB.NET, ASP, PHP, or Java
  • Must demonstrate a high degree of attention to quality, details, and correctness
Associate Security Auditor has no experience requirements

Security Auditor I must have:
  • At least 2 years of experience working on security audits that includes inspecting and evaluating financial and information systems, management procedures and security controls

Security Auditor II must have:

  • At least 3 years of experience in planning, executing and leading security audits across an organization
  • At least 3 years previous experience as technical leader of a team of Security Auditors

Senior Security Auditor must have:

  • At least 5 years of experience in planning, executing and leading security audits across an organization
  • At least 5 years previous experience as technical leader of a team of Security Auditors
 Physical Requirements and Working Conditions:                                     
  • Must have the ability to work at a computer for extensive periods of time
  • Must have the ability to read (both paper and computer screen) for extensive periods of time
  • Must have the ability to listen and speak with internal external parties on the telephone for extended periods of time
  • Must have sufficient hand, arm and finger dexterity to operate a computer keyboard and other Company equipment

 



 

NB! This job is now closed. You can apply for other jobs by uploading your CV.


 

 

 

Similar jobs you might be interested in:

Intermediate IT Technician
Location: Johannesburg
Salary: Market-related
Join a team as an Intermediate IT Technician focusing on Microsoft 365 environments and technical support.
7 days ago


1972 AI Engineer (Advanced)
Location: Menlyn
Salary:
ESSENTIAL SKILLS:Large Language Models (LLMs), RAG systems, multi‑agent frameworks (LangChain, LangGraph, GAIA)Python (Advanced), ML engineering (TensorFlow, PyTorch, Scikit‑learn)Vector Databases (FAISS, Pinecone, Elasticsearch/OpenSearch)Prompt Engineering & Context OrchestrationMLOps (SageMaker, ML Pipelines, GitHub Actions, CI/CD)AWS AI/ML stack: SageMaker, Lambda, Step Functions, API ...
11 days ago


Junior Site Reliability Engineer
Location: Johannesburg
Salary:
Signa Opportunity is recruiting unemployed youth for quality workplace experience through the Youth Employment Service (YES) initiative.About the YES InitiativeThe initiative was launched by the President in 2018 and is a partnership with the government and labour department to collectively devise a national plan to build economic pathways for South Africa’s youth by creating workplace ...
12 days ago


1252 Full Stack Developer (Expert)
Location: Menlyn
Salary:
ESSENTIAL SKILLS:Proven Experience in Data Intelligence and Business IntelligenceAt least 5+ year’s Experience in Building Big Data Pipelines (ETL, SQL, etc)CI/CD pipeline development using Code Build and GitHub ActionsAwareness of Tools such as Tableau, Qlik, MS PowerBI, or other BI tools and experience in FrontendDevelopment Tools like Angular, Figma, ReactExpert in API and ETL development...
13 days ago


Data Engineer
Location: Johannesburg
Salary:
The role:We are seeking a skilled and proactive Data Engineer with 4–5 years of experience to join our growing data team to build robust, secure data foundations-pipelines, models, and platforms-that power analytics, decision intelligence, and digital products for clients across sectors.The ideal candidate will have strong SQL expertise, experience in Power BI dashboard development, and a so...
18 days ago


Application Developer
Location: Johannesburg
Salary: Neg
Application Developer
27 days ago


Intermediate IT Technician
Location: Johannesburg
Salary: market related
The purpose of this role is to provide technical support and administration within Microsoft 365 and networked environments.
35 days ago


Cloud Engineer
Location: Johannesburg
Salary:
61 days ago


Systems Engineer (Unix/Solaris) - Hybrid
Location: Pretoria
Salary:
67 days ago


IT Support Engineer
Location: Johannesburg
Salary:
Our client in Pretoria is looking for an experienced IT Support Engineer to join their team.
14 days ago


Create a free job alert for Associate Security Auditor, Security Auditor, Security Auditor II, Senior Security Auditor in Johannesburg

Enter your email address below and we will email you similar jobs when they become available:

You can cancel at any time. We will not spam you.
By giving us your email address your agree to our Terms and Conditions

 

Jobseekers

Register your CV
Search jobs
Job alerts
CV writing
Blog

Recruiter

Advertise jobs
Search the CV database
How to Write a Job Description

General

Company a-z
Partners
About us
Disclaimer
Terms and conditions
Privacy policy
Cookie policy
POPIA manual
Unsubscribe
Site Map

© Copyright 2026 Executive Placements. All Rights Reserved.