Planning and executing end-to-end audits across AWS and Azure environments, covering areas such as identity and access management, network security, vulnerability management and incident response.
Risk and control assessments across cloud and hybrid environments, with findings presented to senior stakeholders up to Board level.
Developing actionable audit observations and recommendations to improve control frameworks across the business.
Skillset
Handsβon audit or assurance experience with a cyber security focus, responsible for testing controls rather than just advising on them.
Solid technical knowledge of AWS and Azure, including misconfigurations, container security (Kubernetes/Docker) and cloud storage.
Familiarity with cyber security frameworks such as NIST, CIS or ISO, and a working knowledge of the regulatory environment.