Information Security Auditor – US Working Hours (Remote)

About the role

Cognisys is seeking an experienced Information Security Auditor to join its GRC practice. The role is remote, based in South Africa, but requires working US hours (3 pm‑10 pm). You will lead audit engagements for a diverse client base, helping organisations achieve certification and improve their security posture.

Key responsibilities

• Lead and support delivery of audit engagements across multiple clients and sectors.
• Plan, conduct and document audits against recognised management‑system and security frameworks.
• Evaluate design and effectiveness of controls, produce clear, actionable findings.
• Assist clients in preparing for certification and external assurance.
• Collaborate with consultants, project managers and client stakeholders to ensure audit activities are thorough and objective.
• Contribute to continuous improvement of audit methodologies, tools and approaches.

Required profile

• Detail‑oriented assurance professional with strong foundational audit knowledge.
• Practical experience with security and management‑system frameworks.
• Client‑facing, delivery‑focused attitude and ability to communicate findings clearly.
• Desire to develop as a trusted assurance professional within a growing GRC practice.

Required skills

What we offer

• Competitive salary ranging from R450 000 to R650 000 per annum.
• Additional 15 % allowance for non‑standard working hours.
• Fully remote work arrangement.
• Opportunity to work with leading global organisations across 30+ countries.