About the Role
ControlCase is seeking a Senior IT Security Assessor to join our growing global team. In this fully remote UK-based role, you will conduct IT security audits and assessments for clients across the United Kingdom and the European region, ensuring compliance with PCI DSS, ISO 27001/2, GDPR, NIS2, DORA, and other relevant frameworks. This position offers the opportunity to become a PCI QSA (training and certification sponsored by ControlCase) while working in an international, collaborative, and growth-focused environment.
Responsibilities
• Lead client audits and compliance assessments across multiple frameworks.
• Review and analyze systems, applications, databases, and network devices.
• Assess cloud environments including AWS, Azure, and GCP.
• Define audit scope, identify risks, and recommend improvements.
• Provide compliance consulting to help clients meet regulatory requirements.
• Produce final audit and compliance reports.
• Collaborate with internal QA, project managers, and delivery teams.
• Maintain professional certifications and stay current with industry standards.
Qualifications and Skills
• 4–5 years of IT security auditing or consulting experience.
• Bachelor's degree in information security or related field.
• Deep knowledge of IT security controls, access management, logging, vulnerability assessment, and secure system configuration.
• Experience with PCI DSS, ISO 27001/2, GDPR, NIS2, DORA, or similar compliance frameworks.
• Strong understanding of cloud environments and network architectures.
• Excellent English communication skills; fluency in German strongly preferred.
• At least one certification from each of the following groups preferred:
* Group 1: CISA, ISO 27001 Lead Auditor
* Group 2: CISSP, ISO 27001 Lead Implementer, CISM