IT Security Audit & Compliance Specialist
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
The IT Security Audit & Compliance Specialist is responsible for managing and overseeing information security audits, compliance programs, cybersecurity governance, and risk management initiatives across the organization.
Key Skills for This Role
Full Job Posting
Overview
The IT Security Audit & Compliance Specialist is responsible for managing and overseeing information security audits, compliance programs, cybersecurity governance, and risk management initiatives across the organization.
The role ensures compliance with security standards, regulatory requirements, data protection policies, and internal governance frameworks.
The position supports the development of audit frameworks, conducts security assessments, monitors compliance maturity, identifies security risks and vulnerabilities, and collaborates with stakeholders to strengthen the organization’s cybersecurity posture.
Security Audit & Compliance Management
- Develop and maintain comprehensive IT security audit and compliance programs
- Plan, coordinate, and execute information security audit activities
- Define audit scope, objectives, methodologies, and work plans
- Develop and implement audit test plans for systems, applications, infrastructure, and cloud environments
- Conduct security compliance audits for critical systems, networks, and applications
- Maintain audit schedules, documentation, evidence collection, and reporting processes
- Ensure timely closure of audit findings, non-compliance issues, and remediation activities
Cybersecurity Governance & Risk Management
- Ensure compliance with organizational policies, regulatory requirements, contractual obligations, and security standards
- Monitor cybersecurity maturity and compliance posture across operational and technical environments
- Build and maintain controls matrices aligned with multiple security and compliance frameworks
- Identify security risks, vulnerabilities, and compliance gaps, and recommend corrective actions
- Conduct vulnerability and compliance assessments and coordinate remediation activities
- Support governance initiatives related to security standards, policies, and operating procedures
Security Operations & Technical Oversight
- Monitor compliance and security controls related to cloud security environments, Identity and Access Management (IAM), Privileged Access Management (PAM), Data Loss Prevention (DLP), and enterprise productivity and collaboration platforms.
- Coordinate with IT operations and business teams to resolve identified vulnerabilities and compliance issues
- Support the development of technical hardening standards and security baseline documents
- Ensure compliance of critical infrastructure, systems, applications, and cloud services
Reporting & Documentation
- Prepare audit reports, compliance reports, and status updates for management and stakeholders
- Communicate audit findings, recommendations, and remediation plans to leadership teams
- Maintain clear, accurate, and complete audit documentation and evidence records
- Track progress of remediation efforts and monitor implementation of previous audit recommendations
Stakeholder Coordination & Support
- Liaise with internal and external audit teams to support audit activities and evidence collection
- Collaborate with business units, HR, finance, operations, and project teams during audit and compliance reviews
- Support key business initiatives by identifying cybersecurity and compliance-related risks
- Assist in developing and delivering security awareness and compliance initiatives
- Perform related duties and special projects as assigned
Qualifications & Experience
- Bachelor’s degree in Computer Science, Information Security, Cybersecurity, Information Technology, or a related field
- Additional professional training and certifications in cybersecurity, audit, or compliance are preferred
- Minimum 15 years of progressive experience in information security, IT audit and compliance, infrastructure and application security, and cloud security and governance.
- Experience managing security audits, risk assessments, and compliance programs
- Experience working within highly regulated environments, preferably healthcare
Technical Knowledge
- Strong understanding of information security frameworks and standards, cybersecurity governance and risk management, vulnerability management and security assessments, cloud security technologies and controls, and identity and access management concepts.
- Knowledge of industry frameworks and standards, including ISO 27001 / ISO 27002, NIST, and CIS Benchmarks.
- Mandatory hands-on knowledge of cloud security environments, IAM and PAM technologies, DLP solutions, and enterprise productivity and collaboration platforms.
• Certified Information Systems Security Professional (CISSP)
- Cloud security certifications (e.g., cloud security administration or governance certifications)
- ISO 27001 Lead Auditor or equivalent certifications
Skills
- Strong analytical and problem-solving abilities
- Excellent audit, reporting, and documentation skills
- Strong stakeholder management and communication skills
- Ability to work effectively with cross-functional and multicultural teams
- Experience developing security policies, standards, and governance frameworks
- Strong understanding of security compliance and operational best practices
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Starlink Qatar
Senior Network Engineer – DNS, DHCP & IPAM
Doha, QAT
Starlink Qatar is seeking a Senior Network Engineer to support and manage a mission-critical enterprise DDI (DNS, DHCP, IPAM) environment. The role involves ensuring availability, security, and performance of DDI infrast
Service Consultant
Doha, QAT
Starlink Qatar is seeking a motivated Service Consultant for its field sales team, focusing on door-to-door sales of telecom products in Doha. The role involves prospecting, lead generation, and meeting sales targets. Ca
CCTV Infrastructure Specialist (Systems Engineer)
Doha, QAT
Starlink Qatar seeks a highly skilled CCTV Infrastructure Specialist to design, implement, and maintain critical CCTV surveillance systems and hyper-converged infrastructure (HCI). The role requires 5+ years of IT infras
Technical Project Manager
Doha, QAT
Starlink Qatar seeks an experienced Technical Project Manager to lead complex ICT infrastructure projects for enterprise and government customers. The role requires 8-12 years of project management experience in network
Head of Network Infrastructure Operations
Doha, QAT
Starlink Qatar seeks a Head of Network Infrastructure Operations to define and execute network infrastructure strategy, oversee 24/7 NOC operations, drive automation, and ensure security compliance. Requires 12-15 years
Governance, Risk, and Compliance (GRC) Specialist
Doha, QAT
QatarEnergy LNG seeks a GRC Specialist to manage information security audits, compliance programs, and risk management. The role requires 5-8 years of experience in cybersecurity governance, ISO 27001, and PCI-DSS. Ideal
Technical Analyst
Doha, QAT
Starlink Qatar is hiring a Technical Analyst to support service delivery administrative operations. The role requires 3+ years of IT experience, bilingual English and Arabic skills, and proficiency in MS Office Suite.
Field Force Manager
Doha, QAT
Starlink Qatar seeks a Field Force Manager to lead Enterprise Field Operations in a 24x7 Telecom Managed Services environment. The role is accountable for end-to-end field service delivery, SLA/KPI achievement, workforce
Senior Network Engineer – DNS, DHCP & IPAM
Doha, QAT
Service Consultant
Doha, QAT
CCTV Infrastructure Specialist (Systems Engineer)
Doha, QAT
Technical Project Manager
Doha, QAT
Head of Network Infrastructure Operations
Doha, QAT
Governance, Risk, and Compliance (GRC) Specialist
Doha, QAT
Technical Analyst
Doha, QAT
Field Force Manager
Doha, QAT