Job Applicant: Cybersecurity Auditor

Hiring: Part-Time Cybersecurity Auditor with NCA ECC / NIST / ISO 27001 Experience (3-Month Project)

We are seeking a Cybersecurity Auditor with solid experience in NCA ECC compliance to lead a 3-month cybersecurity enhancement initiative for our organization.

Scope Includes:

• Establishing a cybersecurity committee and formal governance processes.

• Developing essential policies (e.g., asset classification, acceptable use, change management, backup).

• Enhancing controls in alignment with NCA ECC & ISO 27001 standards.

• Supporting improvements in network security, IAM, backups, IDS/IPS, and documentation.
Responsibilities:

• Examine internal IT controls, evaluate design and operational effectiveness, identify risk exposures, and recommend mitigation strategies.

• Implement and troubleshoot security controls, support incident response activities.

• Plan, implement, monitor, and upgrade security measures for the protection of data, systems, and networks.

• Participate in change and configuration management, and system hardening.

• Test and identify system vulnerabilities and develop effective countermeasures.

• Conduct efficient and effective IT audit procedures and communicate findings clearly.

• Evaluate application controls and provide security recommendations.

• Understand and work within cybersecurity policies, backup strategies, IAM policies, and change management frameworks.

Requirements:

• Bachelor’s degree in computer science, Information Technology, Cybersecurity, or related fields.

• Master’s degree preferred.

• Minimum 5 years of IT audit experience.

• ISO 27001 Lead Implementer certification required.

• Other certifications (e.g., CISA, Cybersecurity Auditor) are a plus.

• Strong skills in policy development, risk management, and audit preparation.

• Prior experience with government entities or consultancy firms is advantageous.

• Ability to work independently and produce clear, thorough documentation.