Jobs

Project-Based IT Auditor

Project-Based IT Auditor – Active Directory Security Assessment (8-Week Engagement)
Location: Remote | Duration: ~8 Weeks | Compensation: $65/hr +

Our client, a DC-based non-profit, is seeking a skilled IT Auditor (Consultant) for a short-term project to assess the security posture of our Active Directory environment. This critical engagement will support our Internal Audit Division’s efforts to ensure robust access controls, effective privilege management, and regulatory compliance.

Key Objectives:

  • Evaluate the security and access controls of the Active Directory (AD) environment.

  • Identify risks related to privilege escalation and excessive access.

  • Assess password policies, authentication controls, and MFA implementation.

  • Evaluate compliance with applicable regulatory requirements.

Key Responsibilities:

  • Develop a focused and risk-based audit program for AD.

  • Review policies, group memberships, and privileged account controls.

  • Assess adherence to least privilege principles.

  • Identify excessive or unnecessary access rights.

  • Evaluate controls for privilege monitoring, alerting, and enforcement.

  • Test for stale/inactive accounts and weak credentials.

  • Assess password and lockout policies for complexity and expiration.

  • Review audit logs and backup/recovery controls for effectiveness.

  • Determine compliance with relevant security regulations.

  • Deliver a comprehensive written report with findings, risk levels, and a remediation roadmap.

  • Present recommendations to the Chief Audit Executive.

Required Skills & Experience:

  • Proven experience conducting IT audits with a focus on Active Directory environments.

  • Deep knowledge of AD architecture, group policies, and privilege/access management.

  • Familiarity with cybersecurity frameworks and compliance standards (e.g., NIST, ISO 27001).

  • Strong analytical and reporting skills.

  • Experience evaluating MFA, password policies, and system logging.

  • Prior experience drafting formal audit findings and recommendations.

Preferred Qualifications:

  • CISA, CISSP, or similar certification.

  • Experience working with non-profits or federal grant-funded organizations.

Interested candidates should submit a resume highlighting relevant audit experience.
Start Date: Immediate availability preferred, no later than 04.29.25

  • Max. file size: 100 MB.
  • This field is for validation purposes and should be left unchanged.

Share This Job