Cybersecurity & IT Audit Controls Analyst

Job Description

Job Description

Title: Cybersecurity & Audit Controls Analyst

Location: Hybrid near Naperville, Illinois

Type: Contract to hire

Targeted Rate: $50 / Hour

Benefits: This position is eligible for Medical, Dental, Vision

Our client near Naperville, Illinois is seeking a Cybersecurity & Audit Controls Analyst to join their team on a contract to hire basis! This position will be 50% Cybersecurity Operations and 50% IT Audit Controls.

Security Operations (50%)

Incident Response

• Investigate suspicious emails and phishing attempts.
• Perform user interviews and determine extent of compromise.
• Analyze endpoint activity and email logs.
• Escalate major incidents to infrastructure teams when required.
• Document findings and maintain incident logs.

Security Monitoring

• Review security logs and alerts daily.
• Monitor and investigate suspicious activity.
• Respond to user-reported incidents.
• Validate and triage events.

Vulnerability Management

• Manage monthly vulnerability assessments.
• Coordinate remediation efforts.
• Ensure findings are tracked through closure.

Security Tool Administration

Current environment includes:

• Mimecast
• Forcepoint
• Zscaler (ZIA/ZPA)
• CrowdStrike EDR
• CrowdStrike Falcon Complete MDR
• KnowBe4

IT Controls / Audit / Change Management (50%)

• Coordinate annual IT audits.
• Support evidence gathering activities.
• Work cross-functionally with business units.
• Interpret audit questionnaires and requirements.
• Maintain IT controls and documentation.
• Support change management initiatives.
• Partner with leadership on complex audit responses.

Audit activity is expected annually, with additional governance activity driven by private equity ownership and cyber insurance requirements.

Required Qualifications

• 5+ years of IT and/or cybersecurity experience.
• Previous ownership or lead participation in at least one IT audit.
• Hands-on security operations experience.
• Experience investigating security incidents.
• Strong understanding of infrastructure, authentication, and logging.
• Experience with vulnerability management.
• Ability to work independently and know when to escalate.
• Strong documentation and communication skills.

Preferred Technical Experience

Security Platforms:

• CrowdStrike EDR
• CrowdStrike Falcon Complete
• Mimecast
• Zscaler
• Forcepoint
• KnowBe4

Additional Experience:

• Incident response
• Log analysis
• Vulnerability remediation
• Endpoint security
• Email security
• Audit coordination
• Change management
• IT controls

Soft Skills

• Initiative
• Curiosity
• Strong communication skills
• Ability to collaborate across teams
• Documentation mindset
• Problem-solving mentality
• Long-term career mindset

Addison Group is an Equal Opportunity Employer. Addison Group provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. Addison Group complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. Reasonable accommodation is available for qualified individuals with disabilities, upon request.