Amphenol- Cyber Security Auditor

People Architects is excited to recruit for a Audit Manager-Cyber Security for our client- a quietly industry-leading manufacturer of interconnect technologies, the organization delivers a broad range of electrical, electronic, fiber‑optic, antenna, sensor, and high‑speed cable solutions that enable ‑generation connectivity across critical industries. Its products support communications infrastructure, data systems, aerospace and defense, automotive, transportation, and industrial applications, helping drive innovation throughout the electronics ecosystem.

With multibillion‑dollar annual revenue, operations in more than 40 countries, and a decentralized network of specialized business units, the company combines global scale with focused, entrepreneurial execution. Nearly 200,000 employees support a long record of sustained growth and a model built on market expertise, agility, and customer‑driven innovation.

Oversight of individual Audit engagements across the America region.

Key Responsibilities:

• Serve as a second‑line cybersecurity oversight and assurance function, proactively identifying control gaps before internal or external audits occur.
• Partner closely with Internal Audit to support cybersecurity‑focused audits, walkthroughs, evidence preparation, and pre‑audit readiness.
• Work directly with global operating companies to:
• Assess cybersecurity posture and control maturity
• Identify risks across identity & access management, infrastructure, cloud, endpoint, and operational technology (OT)
• Recommend pragmatic, risk‑based improvements aligned with industry frameworks
  
• Perform and evaluate cybersecurity testing activities, including:
  
• Review of penetration testing methodologies, tooling, and remediation plans
  
• Assessment of vulnerability management processes and patching cadence
  
• Evaluation of incident response readiness, logging, and monitoring practices
  
• Monitor and report on cybersecurity risks, recurring control issues, and trends across global operations.
  
• Support development and refinement of cybersecurity policies, standards, and audit playbooks to drive consistency across decentralized environments.
• Influence, educcate, and guide stakeholders to strengthen accountability for cybersecurity controls and risk ownership.

Required Skills & Qualifications:

• 7+ years of experience in cybersecurity, IT audit, cyber risk, or second‑line assurance.
• Strong understanding of cybersecurity frameworks such as NIST CSF, NIST 800‑53, ISO 27001, CIS Controls, and SOC 2.
• Demonstrated experience with audit processes, control testing, risk assessments, and evidence evaluation.
• Technical knowledge across:
• Identity & Access Management (IAM)
  • Network and infrastructure security
  • Cloud security (AWS, Azure, GCP)
  • ERP systems
  • Endpoint security and EDR
  • Vulnerability management and secure configuration
  • OT/ICS environments (preferred)
• Ability to translate technical issues into clear business risk narratives for non‑technical stakeholders.
• Strong communication, documentation, and presentation skills.
• Experience working in highly decentralized or federated environments.
• Ability to travel internationally as needed.

Professional Certifications & Nice-to-Haves:

• CISSP – Certified Information Systems Security Professional
• CISA – Certified Information Systems Auditor
• CRISC – Certified in Risk and Information Systems Control
• CISM – Certified Information Security Manager
• GIAC certifications (GSEC, GSNA, GPEN, GCCC, GRID, etc.)
• ISO 27001 Lead Auditor or Lead Implementer
• CEH – Certified Ethical Hacker (for testing oversight)

Additional Preferred Experience:

• Experience supporting SOX ITGC, SOC 1/SOC 2, ISO 27001, or regulatory cybersecurity audits.
• Familiarity with SIEM, EDR, vulnerability scanners, and penetration testing tools.
• Experience in manufacturing, industrial, or OT‑heavy environments.
• Background in third‑party risk management or supplier cyber assessments.
• Ability to develop cyber maturity models, dashboards, and risk reporting.
• Experience working with managed service providers (MSPs) or decentralized IT structures.
• Exposure to cloud governance, zero trust principles, and secure architecture reviews.`

We are committed to a diverse and inclusive workplace. People Architect and our clients are equal opportunity employers and do not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. Applicants for employment with any of People Architect’s clients will ever be asked to provide money (even if reimbursable) as part of the job application or hiring process.

*no external agencies/3rd parties.