Home Jobs Senior IT Auditor
Back to Jobs

Senior IT Auditor - Job Opportunity at SAV Associates

North York, Canada
Full-time
Senior
Posted: July 3, 2025
On-site
CAD $68,664.53–$87,042.51 per year

Benefits

Comprehensive dental care coverage providing financial protection for routine and emergency dental procedures
Extended health care benefits offering additional medical coverage beyond provincial health insurance
Life insurance protection providing financial security for beneficiaries and peace of mind for employees

Key Responsibilities

Lead comprehensive IT security assessments to evaluate and strengthen client technology infrastructure, directly impacting organizational risk posture and compliance standing
Execute advanced vulnerability assessments and penetration testing using industry-standard tools to identify critical security gaps and provide actionable remediation strategies
Drive technology audit initiatives across IT infrastructure, applications, and operations to ensure governance compliance and optimize business performance
Develop and implement risk and controls matrices that establish audit frameworks and guide strategic decision-making for client organizations
Provide expert advisory services on IT risk assessment, controls, and governance to enhance client security posture and operational efficiency
Design and oversee implementation of Identity Access Management solutions that protect sensitive data and ensure regulatory compliance
Lead ISO 27000 series audits and PCI certification processes to maintain industry standards and support business continuity
Prepare comprehensive audit reports and documentation that communicate findings to executive leadership and support strategic planning initiatives

Requirements

Education

University degree (or college) in Computer Science, Information Technology, or other IT-related field of study

Experience

At least 3-year experience in audit and cyber security with experience of an audit with a CPA / CA firm or a top-tier IT Consulting firm

Required Skills

Skills to plan, implement, administer, maintain, and secure a computer network Knowledge of scripting languages such as perl, vbscript, *nix shell scripting Excellent knowledge of cyber security standards, risks, threats, prevention measures, and best practices Experience with vulnerability scanning and management processes and tools like Qualys, ServiceNow Vulnerability Response Knowledge of OWASP Top 10, OWASP ASVS, SANS, NIST, OWASP testing guide and Penetration Testing Execution Standard Sound computer user support skills, network administration skills and security and vulnerability assessment and remediation skills Proficient with Microsoft Office applications (Word / Excel / PowerPoint / Access / Visio) Project management - Able to multitask, work under pressure and finish work in tight deadlines Good English writing skills

Certifications

CISA, CIA, CISSP or CISM ISO 27001 Lead Auditor PCI QSA Certified Ethical hacker (CEH), Offensive Security Certified Professional (OSCP), Offensive Security Certified Expert (OSCE), CREST, SANS GIAC Penetration Tester, Web Application Penetration Tester, Exploit Researcher and Advanced Penetration Tester
Advertisement
Ad Space

Sauge AI Market Intelligence

Industry Trends

The cybersecurity audit market is experiencing unprecedented growth driven by increasing regulatory requirements such as GDPR, SOX compliance, and industry-specific mandates, creating sustained demand for skilled IT auditors who can navigate complex compliance landscapes. Organizations are investing heavily in third-party audit services to validate their security posture and meet board-level governance requirements. Cloud migration initiatives across all industry sectors are driving demand for IT auditors with expertise in cloud security frameworks and hybrid infrastructure assessments, as organizations require specialized knowledge to audit distributed computing environments and ensure compliance across multiple platforms. The integration of artificial intelligence and machine learning in cybersecurity is creating new audit requirements, with organizations needing auditors who can assess AI-driven security tools, automated threat detection systems, and algorithmic decision-making processes within their security frameworks.

Salary Evaluation

The offered salary range of CAD $68,664.53–$87,042.51 is competitive for the Toronto market, aligning with industry standards for senior IT auditors with 3-5 years of experience. This range reflects the specialized nature of the role and the requirement for consulting firm experience, positioning it in the 60th-75th percentile of market rates for similar positions in the Greater Toronto Area.

Role Significance

Typical team structure would involve leading small audit teams of 2-4 junior auditors and analysts, collaborating with partners and senior managers on engagement strategy, and coordinating with client IT teams ranging from 5-20 personnel depending on organization size and audit scope.
This senior-level position requires independent judgment and the ability to lead complex audit engagements with minimal supervision. The role involves direct client interaction, strategic advisory responsibilities, and the authority to make recommendations that impact organizational security posture, indicating a high level of professional responsibility and decision-making authority.

Key Projects

Leading comprehensive SOC 2 Type II audits for technology service providers and SaaS companies, involving detailed assessment of security, availability, and confidentiality controls over 6-12 month engagement periods Conducting enterprise-wide IT risk assessments for mid-market companies undergoing digital transformation, including evaluation of cloud migration strategies and hybrid infrastructure security Managing PCI DSS compliance audits for retail and financial services clients, ensuring adherence to payment card industry standards and implementing remediation strategies for identified gaps

Success Factors

Maintaining current knowledge of evolving cybersecurity threats and regulatory requirements through continuous professional development and industry engagement, as the rapidly changing threat landscape requires auditors to stay ahead of emerging risks and compliance obligations. Developing strong client relationship management skills to build trust and credibility with C-level executives and IT leadership, as successful IT auditors must communicate complex technical findings to non-technical stakeholders and influence strategic security decisions. Building expertise in emerging technologies such as cloud security, DevSecOps, and AI/ML security frameworks to remain relevant in an increasingly digital business environment where traditional audit approaches must evolve to address new technological paradigms.

Market Demand

High demand exists for senior IT auditors with consulting firm experience and relevant certifications, driven by regulatory compliance requirements, increasing cyber threats, and digital transformation initiatives across all sectors. The specific combination of technical security skills and audit experience makes this a sought-after profile in the current market.

Important Skills

Critical Skills

CISA or equivalent certification demonstrates mastery of IT audit principles and regulatory frameworks, serving as the foundation for credibility with clients and regulatory bodies while providing structured methodology for complex audit engagements. Hands-on penetration testing experience using tools like Kali Linux and Nessus provides practical security assessment capabilities that complement theoretical audit knowledge, enabling comprehensive evaluation of client security posture through both compliance and technical risk perspectives. Experience with SOC reporting standards and frameworks like COBIT and NIST provides the regulatory foundation necessary for conducting enterprise-level audits and advisory services, ensuring audit work meets professional standards and client expectations.

Beneficial Skills

Cloud security expertise in AWS or Azure environments enhances marketability as organizations continue migrating to cloud platforms, requiring auditors who understand distributed computing security models and cloud-specific compliance requirements. Project management capabilities and ability to work under pressure enable successful delivery of complex audit engagements within tight deadlines, supporting client satisfaction and firm profitability while managing multiple concurrent engagements. Strong written communication skills facilitate preparation of comprehensive audit reports and client presentations that effectively communicate technical findings to business stakeholders, supporting client relationship management and engagement success.

Unique Aspects

The role uniquely combines traditional IT audit responsibilities with hands-on penetration testing and vulnerability assessment capabilities, requiring both analytical audit skills and technical security expertise that distinguishes it from standard audit positions.
The position offers direct involvement in emerging compliance frameworks and advisory services, providing exposure to cutting-edge security technologies and regulatory developments that enhance professional marketability.
The requirement for consulting firm experience and multiple advanced certifications creates a high barrier to entry, positioning successful candidates as specialized professionals within the cybersecurity audit market.

Career Growth

Career progression to management level typically occurs within 2-4 years with strong performance and additional certifications, while transition to CISO or senior advisory roles may take 5-7 years with demonstrated leadership experience and strategic business acumen.

Potential Next Roles

IT Audit Manager or Senior Manager positions at Big Four accounting firms or major consulting organizations, involving oversight of multiple audit engagements and team leadership responsibilities Chief Information Security Officer (CISO) roles in mid-market companies, leveraging audit experience to build and manage comprehensive security programs Independent cybersecurity consultant specializing in regulatory compliance and risk assessment, serving multiple clients across various industries

Company Overview

SAV Associates

SAV Associates operates as a growing chartered professional accounting firm in the competitive Toronto market, focusing on providing comprehensive audit and advisory services to mid-market clients. The firm's location at Yonge and Sheppard positions it strategically in North York's business district, indicating a focus on serving the Greater Toronto Area's diverse business community.

As a mid-tier accounting firm, SAV Associates competes in the space between Big Four firms and smaller local practices, offering personalized service while maintaining professional standards and regulatory compliance capabilities. The firm's emphasis on IT audit services suggests strategic positioning to capture market share in the growing cybersecurity compliance sector.
The firm's North York location provides access to a concentrated business market while maintaining lower overhead costs compared to downtown Toronto, allowing for competitive pricing while serving clients across the GTA and potentially broader Ontario market.
The firm culture emphasizes professional development and mastery of diverse skill sets within a fast-paced environment, suggesting a learning-oriented atmosphere where employees gain broad exposure to different industries and audit challenges, though with expectations for flexibility and additional hours during peak periods.
Advertisement
Ad Space
Apply Now

Data Sources & Analysis Information

Job Listings Data

The job listings displayed on this platform are sourced through BrightData's comprehensive API, ensuring up-to-date and accurate job market information.

Sauge AI Market Intelligence

Our advanced AI system analyzes each job listing to provide valuable insights including:

  • Industry trends and market dynamics
  • Salary estimates and market demand analysis
  • Role significance and career growth potential
  • Critical success factors and key skills
  • Unique aspects of each position

This integration of reliable job data with AI-powered analysis helps provide you with comprehensive insights for making informed career decisions.