1

Information Systems Auditor Jobs (NOW HIRING)

Certifications related to the candidate's coverage responsibilities are preferred, such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and ...

Certifications related to the candidate's coverage responsibilities are preferred, such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and ...

IT Auditor

New York, NY · On-site

$360/day

CISA certification (Certified Information Systems Auditor) Risk and Control Self-Assessment (RCSA) experience IT Change Management Very good excel skills Good communication skills Additional ...

IT Auditor

New York, NY · On-site

$360/day

Telephonic + In-Person Qualifications Must have skills/experience: • CISA certification (Certified Information Systems Auditor) • Risk and Control Self-Assessment (RCSA) experience • IT Change ...

Bachelor's degree in Information Systems, Accounting, Finance, Business, Economics or related field. * 5+ years of experience in internal/external audit, IT auditing, internal controls, or compliance ...

Bachelor's degree in Information Systems, Accounting, Finance, Business, Economics or related field. * 5+ years of experience in internal/external audit, IT auditing, internal controls, or compliance ...

The IT audits consist of reviewing the system of internal controls relating to information security ... Act as Lead Auditor, as necessary, leading and supervising the team and completing evaluations for ...

Legislative Auditor

Pierre, SD · On-site

$63K - $109K/yr

Legislative Auditor II: Bachelor's degree or Master's degree in Accounting, Business Administration, or related fields. 2 to 3 years' experience in auditing, information technology/systems auditing ...

Knowledge of the principles, practices, and techniques involved in conducting information system ... Auditors ("IIA"). Demonstrated ability to gather, analyze, and evaluate facts, and prepare and ...

You are a Certified Information Systems Auditor (CISA) * You have more than 3 years of progressively responsible public accounting experience with a "Big 4" * You have good experience in an internal ...

System Security Auditor LOCATIONReston, VA 20190 CLEARANCETS/SCI Full Poly (Please note this ... Assess vulnerabilities in IT systems and applications * Develop and implement audit plans and ...

next page

Showing results 1-20

Information Systems Auditor information

See salary details

$41.5K

$78.2K

$125K

How much do information systems auditor jobs pay per year?

As of Jul 3, 2026, the average yearly pay for information systems auditor in the United States is $78,163.00, according to ZipRecruiter salary data. Most workers in this role earn between $58,500.00 and $89,500.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as an Information Systems Auditor, and why are they important?

To thrive as an Information Systems Auditor, you need a strong background in IT systems, risk assessment, and auditing principles, typically supported by a degree in information systems, accounting, or a related field. Familiarity with audit software, data analytics tools, and certifications such as CISA (Certified Information Systems Auditor) are highly valued in this role. Strong analytical thinking, attention to detail, and effective communication skills help auditors identify issues and convey findings clearly. These skills and qualifications ensure the integrity, security, and compliance of organizational information systems.

What Is an Information Systems Auditor?

An information systems auditor is responsible for ensuring that a business’s IT system follows security, regulatory, and compliance requirements. As an information systems auditor, your job duties include conducting onsite audits of IT and business systems, identifying potential vulnerabilities, and generating audit reports based on findings. Qualifications include a bachelor's degree in information systems or a related field. You also need to earn your Certified Information Systems Auditor (CISA) certification, which is the standard for learning the necessary knowledge and skills for this career. To apply for certification, you must have five years of experience in information systems auditing, assurance, or security with a proven record of following ISACA's Code of Professional Ethics and Information Systems Auditing Standards.

What are some common challenges Information Systems Auditors face when performing audits across different departments?

Information Systems Auditors often encounter challenges such as varying levels of technical expertise among department staff, inconsistent documentation practices, and resistance to change or scrutiny. They must adapt their communication style to effectively explain technical audit findings to non-technical stakeholders and foster cooperation during the audit process. Additionally, auditors frequently need to stay updated on evolving regulations and emerging technologies to ensure comprehensive and relevant assessments.

What is the salary of CISA?

The Certified Information Systems Auditor (CISA) certification can lead to salaries ranging from approximately $70,000 to over $130,000 annually, depending on experience, location, and employer. Information Systems Auditors with CISA credentials are often responsible for assessing IT controls, security, and compliance within organizations.

Is CISA an entry level job?

The Certified Information Systems Auditor (CISA) is a professional certification for experienced IT auditors and security professionals, not an entry-level position. It typically requires several years of work experience in information systems auditing, control, or security before certification. Entry-level roles in information systems auditing usually require foundational knowledge and may not require CISA certification initially.

What does an information system auditor do?

An information systems auditor evaluates an organization's IT infrastructure, security controls, and data management processes to ensure compliance with policies and regulations. They identify vulnerabilities, review system controls, and recommend improvements, often using tools like audit software and frameworks such as COBIT or ISO 27001. The role typically requires knowledge of cybersecurity, risk management, and relevant certifications like CISA.

What is the difference between Information Systems Auditor vs Cybersecurity Analyst?

AspectInformation Systems AuditorCybersecurity Analyst
CertificationsCISA, CISSP (optional)CISSP, CompTIA Security+
Work EnvironmentAudit firms, corporate compliance teamsSecurity operations centers, IT departments
Industry UsageFinance, healthcare, governmentFinance, tech, government
Primary FocusAssessing IT controls, compliance, risk managementPreventing, detecting, responding to security threats

While both roles involve IT security, the Information Systems Auditor primarily evaluates controls and compliance, whereas the Cybersecurity Analyst focuses on active threat detection and response. Understanding these differences helps organizations align their IT and security strategies effectively.

What is an Information Systems Auditor?

An Information Systems Auditor is a professional responsible for evaluating and ensuring the security, integrity, and efficiency of an organization's information systems. They conduct audits to assess compliance with internal policies and external regulations, identify vulnerabilities, and recommend improvements. Their role is crucial in protecting sensitive data, preventing cyber threats, and supporting overall business objectives by ensuring IT systems are well-controlled and reliable.

Is an auditor a high paying job?

An Information Systems Auditor can earn a competitive salary, especially with certifications like CISA and experience in cybersecurity or IT risk management. Salaries vary by industry, location, and level of expertise, but the role generally offers above-average compensation compared to many other IT positions.
What cities are hiring for Information Systems Auditor jobs? Cities with the most Information Systems Auditor job openings:
What are the most commonly searched types of Information Systems Auditor jobs? The most popular types of Information Systems Auditor jobs are:
Who are the top companies hiring for Information Systems Auditor jobs? The top employers for Information Systems Auditor jobs are:
What states have the most Information Systems Auditor jobs? States with the most job openings for Information Systems Auditor jobs include:
What job categories do people searching Information Systems Auditor jobs look for? The top searched job categories for Information Systems Auditor jobs are:
Infographic showing various Information Systems Auditor job openings in the United States as of June 2026, with employment types broken down into 96% Full Time, and 4% Contract. Highlights an 91% Physical, 2% Hybrid, and 7% Remote job distribution, with an average salary of $78,163 per year, or $37.6 per hour.
IT Auditor

Full-time

Posted 9 hours ago


Job description

Company Description

Anew HR Solutions is a Human Resources consulting agency based out of Raleigh, NC.  We provide Human Resource consulting to small-medium size companies that are seeking to have authentic results through a holistic approach in the highly regulated world of Human Resources.  

Please visit www.anewhrsolutions.com for more information. 

Job Description

We're currently seeking to fill the role of an IT Auditor for our client. The IT Auditor role is predominantly focused on audit projects, participating in the planning, driving fieldwork, and assisting with report clearance. The primary measure of success is identifying meaningful potential issues about the design and effectiveness of controls and creating reliable documentation to support his or her work. Please apply if you are looking for a great opportunity in the tech world with a well-known company that supports and encourages growth and independence.

Qualifications

  • Previous internal or external IT audit experience is required.
  • Capable of identifying, assessing and advising on risks for large-scale technology projects, IT general controls and completing IT process audits (e.g., SDLC, Change Management, Logical Security, Business Continuity/Disaster Recovery and Incident/Problem Monitoring).
  • Proficiency in auditing infrastructure components is required (e.g., Mainframe, Unix/Linux, Windows)Additional Qualifications
  • Minimum of 3-5 years of related experience
  • A bachelor's degree is required, preferably with a technology-related major.
  • Certifications related to the candidate's coverage responsibilities are preferred, such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and Certified Information Systems Security Professional (CISSP).

Strong knowledge and understanding of these technologies and auditing experience of these areas:

  • network technology
  • operating systems
  • databases
  • storage technologies
  • firewalls
  • intrusion detection systems
  • messaging systems,
  • web applications technologies,
  • mobile platforms
  • data loss prevention
  • cloud computing
Qualifications

Qualifications

  • Previous internal or external IT audit experience is required.
  • Capable of identifying, assessing and advising on risks for large-scale technology projects, IT general controls and completing IT process audits (e.g., SDLC, Change Management, Logical Security, Business Continuity/Disaster Recovery and Incident/Problem Monitoring).
  • Proficiency in auditing infrastructure components is required (e.g., Mainframe, Unix/Linux, Windows)Additional Qualifications
  • Minimum of 3-5 years of related experience
  • A bachelor's degree is required, preferably with a technology-related major.
  • Certifications related to the candidate's coverage responsibilities are preferred, such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and Certified Information Systems Security Professional (CISSP).

Strong knowledge and understanding of these technologies and auditing experience of these areas:

  • network technology
  • operating systems
  • databases
  • storage technologies
  • firewalls
  • intrusion detection systems
  • messaging systems,
  • web applications technologies,
  • mobile platforms
  • data loss prevention
  • cloud computing
Additional Information

Strong knowledge and understanding of these technologies and auditing experience of these areas:

  • network technology
  • operating systems
  • databases
  • storage technologies
  • firewalls
  • intrusion detection systems
  • messaging systems,
  • web applications technologies,
  • mobile platforms
  • data loss prevention
  • cloud computing