Senior IT Security Assessor - United Kingdom (Remote)

About the Role

ControlCase is seeking a Senior IT Security Assessor to join our growing global team. In this fully remote UK-based role, you will conduct IT security audits and assessments for clients across the United Kingdom and the European region, ensuring compliance with PCI DSS, ISO 27001/2, GDPR, NIS2, DORA, and other relevant frameworks. This position offers the opportunity to become a PCI QSA (training and certification sponsored by ControlCase) while working in an international, collaborative, and growth-focused environment.

Responsibilities

• Lead client audits and compliance assessments across multiple frameworks.

• Review and analyze systems, applications, databases, and network devices.

• Assess cloud environments including AWS, Azure, and GCP.

• Define audit scope, identify risks, and recommend improvements.

• Provide compliance consulting to help clients meet regulatory requirements.

• Produce final audit and compliance reports.

• Collaborate with internal QA, project managers, and delivery teams.

• Maintain professional certifications and stay current with industry standards.

Qualifications and Skills

• 4–5 years of IT security auditing or consulting experience.

• Bachelor’s degree in information security or related field.

• Deep knowledge of IT security controls, access management, logging, vulnerability assessment, and secure system configuration.

• Experience with PCI DSS, ISO 27001/2, GDPR, NIS2, DORA, or similar compliance frameworks.

• Strong understanding of cloud environments and network architectures.

• Excellent English communication skills; fluency in German strongly preferred.

• At least one certification from each of the following groups preferred:

• Group 1: CISA, ISO 27001 Lead Auditor
• Group 2: CISSP, ISO 27001 Lead Implementer, CISM