Find a job
IT Security Auditor in Derby
Job Board
Companies
Dr Jobs

IT Security Auditor in Derby

Derby Full-Time 48000 - 72000 £ / year (est.) Home office (partial)
Dr Jobs

At a Glance

  • Tasks: Conduct audits to identify IT security weaknesses and create action plans.
  • Company: Join Rolls-Royce, a leader in engineering and technology innovation.
  • Benefits: Enjoy hybrid working, competitive salary, bonuses, and employee discounts.
  • Other info: Open to diverse candidates; applications encouraged from all backgrounds.
  • Why this job: Be part of a caring culture that values your growth and contributions.
  • Qualifications: Knowledge of information systems and cyber security frameworks required.

The predicted salary is between 48000 - 72000 £ per year.

Job DescriptionIT Security AuditorDerby/Bristol UK Hybrid minimum 3 days on site per weekWhat you will be doing:We have an excellent opportunity for an IT Security Auditor to join our Cyber Security Risk and Compliance this role you will be undertaking assessment activities to identify weaknesses policy violations in our IT systems (and/or applications) and create action plans to correct any problems in order to prevent future cyber security breaches.You will be working with other Security Auditors and Information Assurance Specialists to ensure a common approach to Security Audit across Rolls-Royce.Responsibilities:Support the Head of Cyber Security Policy & Compliance in identifying and planning cyber security audits across the IT Function within business areas of our IT supply chain and 3rd party suppliers into the business.Undertaking those audits and providing timely reports.Creating corrective action plans in conjunction with the target system owner in order to improve the cyber security posture of that system.Analysis of the audit output to identify trends to inform the improvement of policy process procedure or technology.Presenting findings to a wider audience including senior management.Undertaking other tasks to support the wider cyber security team such as work on the cyber culture programme.Assist the wider team in developing and defining Information Security policies standards guidelines and procedure to an agreed framework (ISO27000)Why Rolls-RoyceWork with us and well welcome you into a culture of caring and belonging where you can be yourself. We will listen first embrace feedback and act with integrity. We will invest in your continuous learning and development and make sure you have access to a wide breadth and depth of opportunities to grow your career and make a difference.We offer excellent development a competitive salary and exceptional benefits. These include bonus employee support assistance and employee discounts.Hybrid working is a way in which our people can balance their time between the office home or another remote location. Its a locally managed and flexed informal discretionary arrangement. As a minimum were all expected to attend the workplace for collaboration and other specific reasons on average three days per week. Discover more on our GBS Service Portal about hybrid working.Who were looking for:Being a part of Rolls-Royce youll know we put safety first do the right thing keep it simple and make a difference. These principles form our behaviours. They are an essential component of our assessment process and are fundamental qualities that we seek for all roles.Good overall knowledge of information systems practices and applications. Thorough understanding of Rolls-Royce management processes and practical knowledge of the principles of information securityUnderstanding of Cyber Security frameworks and benchmarks to which we have to demonstrate compliance to (for example ISO27000 NIST & CIS)Communicates well and has the skill to influence through persuasion in a formal contextBroad knowledge of IT security demonstrated by attainment of appropriate qualificationsExperience / awareness of cloud technologies and capabilities in an enterprise environmentWillingness to learn and promote wider compliance requirements such as Product Safety Data Privacy and Export ControlJoin us & help Rolls-Royce to become a high-performing competitive resilient business.Please be aware that the priority will be given to employees identified as being at high risk.The professional level and salary of the position will be dependent on the skills and experience of the successful candidate but is anticipated to be Level C.This job is advertised at the grades shown and this is the desired operating level for this role.We encourage applications from candidates with relevant experience from any grade.It is advised that you inform your current manager of your application for this role.We are an equal opportunities employer. Were committed to developing a diverse workforce and an inclusive working environment. We believe that people from different backgrounds and cultures give us different perspectives. And the more perspectives we have the more successful well be. By building a culture of respect and appreciation we give everyone who works here the opportunity to realise their full potential.You can learn more about our global Inclusion strategy here.Grade: Level CClosing Date: 22/08/2025Recruiter: Job CategoryInformation TechnologyPosting Date18 Aug 2025; 00:08Posting End Date22 Aug 2025 Key Skills IT Experience,ISO 27001,Risk Management,COSO,IT Auditing,PCI,COBIT,NIST Standards,SOX,Information Security,Internal Audits,FISMA Employment Type : Full-Time Experience: years Vacancy: 1

IT Security Auditor in Derby employer: Dr Jobs

At Rolls-Royce, we pride ourselves on fostering a culture of inclusivity and continuous development, making us an exceptional employer for IT Security Auditors. With a commitment to employee growth, competitive salaries, and outstanding benefits, including hybrid working arrangements, we empower our team members to thrive both personally and professionally. Join us in Derby or Bristol, where your contributions will be valued, and you will have the opportunity to make a meaningful impact in the field of cyber security.

Dr Jobs

Contact Details:

Dr Jobs Recruitment Team

View Dr Jobs profile

StudySmarter Expert Advice🤫

We think this is how you could land IT Security Auditor in Derby

Get Involved in the Cybersecurity Community

Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!

Show Off Your Skills with Capture the Flag Competitions

Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Dr Jobs, love seeing candidates who actively engage in these challenges.

Tailor Your Online Presence

Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!

Apply Directly Through Dr Jobs

Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Dr Jobs. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.

We think you need these skills to ace IT Security Auditor in Derby

IT Auditing
Risk Management
ISO 27001
NIST Standards
COBIT
PCI Compliance
FISMA

Some tips for your application 🫡

Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!

Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!

Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Dr Jobs insight into your practical problem-solving abilities and makes your application memorable.

Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Dr Jobs that you’re committed to staying ahead in the game.

How to prepare for a job interview at Dr Jobs

Sharpen Your Technical Skills

For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.

Prepare for Scenario-Based Questions

Expect the interviewers at Dr Jobs to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.

Highlight Your Certifications

Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Dr Jobs.

Show Your Passion for Cybersecurity

Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.

footer-logo
Company
Login Career About Us
Product
Exams Explanations For Companies Magazine
Help
Help Center Premium Login
© StudySmarter
Terms
Privacy