Skip to content
MVPeople Group Logo
MVPeopleGroup
GRC & Compliance

IT Auditor – Internal Controls & Compliance

Apeldoorn, GEConsultancyHybridMedioroverige
Apply nowAsk a question

About the assignment

You audit IT systems, processes, and controls to ensure they meet regulatory and internal standards. Your work directly impacts how the organization manages risk, secures assets, and demonstrates compliance to stakeholders.

You'll evaluate control effectiveness, identify gaps, and recommend improvements. You combine technical security knowledge with audit discipline to build trust in the IT environment.

Your responsibilities

  • Design and execute IT audit plans covering infrastructure, applications, and operational controls
  • Assess compliance against ISO 27001, NIS2, DORA, COBIT, and industry-specific frameworks
  • Evaluate risk management practices and security control implementation maturity
  • Document audit findings, classify risk severity, and recommend remediation actions
  • Coordinate with business and IT teams to understand control objectives and validate improvements
  • Prepare audit reports and present findings to management and audit committees
  • Monitor remediation progress and validate control effectiveness over time
  • Stay current with regulatory changes and emerging audit standards

Tech Stack & Tools

Platforms & Tooling

ServiceNow GRCArcherACL AnalyticsCAST Highlight

Frameworks & Standards

ISO 27001ISO 27002COBIT 2019NIST Cybersecurity FrameworkDORANIS2COSO Internal Control Framework

Methodologies

Risk-based audit planningControl testing and validationAudit sampling techniquesContinuous audit

Certifications (preferred)

CIA (Certified Internal Auditor)CISA (Certified Information Systems Auditor)CRISC (Certified in Risk and Information Systems Control)CISSP

Must-haves

  • 3+ years of IT audit, IT risk, or internal controls experience
  • Solid understanding of IT security controls and governance frameworks
  • Knowledge of compliance requirements (ISO 27001, COBIT, or equivalent)
  • Strong analytical and communication skills; ability to translate technical findings for non-technical audiences
  • Experience with audit tools and documentation practices

Nice-to-haves

  • Background in GRC platforms (ServiceNow GRC, Archer) or audit management systems
  • Exposure to cloud security controls and infrastructure auditing
  • Familiarity with continuous audit and automated control monitoring

What we offer

  • Shape organizational risk and compliance maturity
  • Work across all IT domains—cloud, infrastructure, applications, security
  • Develop audit expertise and professional certifications
  • Collaborate with senior management and board-level committees
  • Competitive compensation and development support
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

The process

1

Introduction

Phone call with your MVPeople consultant (within 24 hours)

2

Match & Brief

We discuss the assignment in detail and prepare you

3

Client meeting

Introduction to the client

4

Start

Contracting and onboarding

Details

Type

Consultancy

Location

Apeldoorn, GE

Work model

Hybrid

Level

Medior

Industry

overige

Posted

9 June 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Apply nowMore information

Related vacancies

Privacy & DPOConsultancy

Privacy & Permissions Specialist

amsterdamHybrid
View vacancy
IAM / IGAConsultancy

IAM Team Manager

AmsterdamHybrid
View vacancy
Data Security & DLPConsultancy

Privacy Data Cleansing Specialist

Amsterdam, NHHybrid
View vacancy
Apply now