Cybersecurity Audit Manager (Mid)

Kentro

$90K — $100K *
Education, Government & Non-Profit
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Cybersecurity or closely related field; equivalent experience accepted.
  • 5+ years in coordinating federal cybersecurity audits like OIG or FISMA.
  • Proven ability to manage multi-stakeholder audit timelines efficiently under pressure.
  • Strong writing and communication skills to articulate technical subjects clearly.
  • Preferred certifications: PMP, FAC/PPM, or CompTIA Security+.

Responsibilities

  • Lead the planning and coordination of various cybersecurity audits and assessments.
  • Maintain an updated risk register for cybersecurity audits, tracking progress and remediation plans.
  • Prepare audit documentation and responses for oversight bodies efficiently and accurately.
  • Develop and refine audit playbooks and process documentation to enhance readiness.
  • Coordinate essential meetings and manage audit information requests and timelines.
  • Monitor risks related to high-value assets and provide updates to leadership on audit findings.
  • Serve as primary liaison among various stakeholders during audit engagements.

Benefits

  • Competitive benefits package with paid time off and healthcare options.
  • 401k plan with employer matching contributions.
  • Education reimbursement for certifications and professional development.
  • Engaging company culture with social events and wellness activities.
  • Commitment to continuous professional development and community engagement opportunities.
Full Job Description
Overview

Kentro is hiring for a Cybersecurity Audit Manager to coordinate and support all phases of cybersecurity-related audit engagements across DOC, serving as the central liaison for planning, evidence curation, packaged responses, and follow-up actions. The role covers OIG/GAO engagements, annual FISMA activities, OMB A-123/FMFIA internal controls assessments, and cybersecurity elements of the Annual Financial Statement Audit (general coordination). The scope of this role covers audit coordination; the role does not perform formal control testing or own technical remediation.

Additionally, the role supports program maturity by coordinating the continuous assessment of audit risks. It considers known weaknesses and audit recommendations and forecasts audit-relevant risks from emerging technologies and external threats. These coordination efforts drive measurable improvements in cybersecurity posture and incremental gains in OIG FISMA outcomes

Location: Hybrid in Washington, D.C.

Salary Range: $90,000-100,000/annually. Factors influencing pay within this range include geography, market demand, skills, education, experience, and other qualifications of the successful candidate.

Responsibilities

Cybersecurity Audit Management
  • Lead planning, coordination, and tracking of cybersecurity audits and assessments, including FISMA, OMB A-123, FMFIA, and OIG and GAO engagements.
  • Maintain the cybersecurity audit risk register, tracking risks, remediation plans, owners, milestones, and progress.
  • Prepare packaged responses, corrective action plans (CAPs), audit artifacts, and closure documentation for delivery to oversight bodies.
  • Develop or update audit playbooks, process documents, and guidance materials to standardize readiness and engagement execution.
  • Coordinate entrance/exit conferences, walkthroughs, interviews, site visits; manage information requests and due dates.
  • Support development of risk summaries, dashboards, and program-level reporting (e.g., status of audit activities, open items, milestones).

Risk, Compliance & Alignment
  • Monitor risks tied to High Value Assets (HVAs) and audit findings, providing periodic updates to leadership.
  • Ensure coordination activities align with NIST RMF, NIST CSF, FISMA, applicable OMB guidance, and DOC cybersecurity policies.
  • Track known weaknesses and recommendations to inform audit readiness and evidence planning.

Stakeholder Engagement
  • Serve as the primary liaison among OCRM, OCOS, ESOC, DOC Operating Units, auditors, and assessment teams.
  • Provide clear communication, regular status updates, and issue escalation as needed to maintain schedule and quality.
  • Develop concise briefings and summaries for leadership and audit stakeholders at key milestones (entrance, fieldwork, exit, close-out).

Tools & Platforms
  • Utilize CSAM (GRC) as the system of record for system security documentation and status.
  • Manage engagement workflow and artifacts through the DOC Audit Management System (ServiceNow); maintain request logs, evidence, and dashboards.
  • Use collaboration/reporting tools (e.g., SharePoint, Excel/Power BI, MS Project) for repository management, trackers, and executive-ready summaries.


Qualifications

  • Bachelor's degree in Cybersecurity, Information Assurance, Information Systems, or closely related field; or equivalent experience.
  • 5+ years coordinating Federal cybersecurity audits or oversight engagements (OIG, GAO, FISMA, A-123/FMFIA, financial statement audits).
  • Demonstrated ability to manage complex audit calendars, artifacts, and multi-stakeholder coordination under tight deadlines.
  • Strong writing and communication skills to synthesize technical topics into accurate packaged responses and briefings.

Qualifications and Certifications:
  • Required: Bachelor's degree in Cybersecurity/Information Assurance/Information Systems or closely related field.
  • Preferred: PMP or FAC/PPM equivalent certification, CompTIA Security+ (or higher DoD 8570/8140-aligned baseline

Key Competencies
  • Audit coordination & stakeholder management
  • Evidence curation discipline and accuracy
  • Clear written communication; executive-ready summarization
  • Attention to detail; confidentiality and records stewardship

Clearance Requirement:
  • US Citizen or Green card holder
  • Ability to obtain and maintain Public Trust adjudication.
  • Must meet updated ID requirements: https://www.gsa.gov/technology/it-contract-vehicles-and-purchasing-programs/federal-credentialing-services/get-appointment-help/bring-required-documents
    • If you do not currently meet the ID requirements outlined, you must be willing and able to update your current forms of ID in a timely manner to complete the suitability process successfully.


Benefits

The Company

We hold three ISO certifications (27001:2013, 20000-1:2011, 9001:2015), two CMMI ML 3 ratings (DEV and SVC) and CMMC Level 2 Certification.

Benefits

We offer competitive benefits package including paid time off, healthcare benefits, supplemental benefits, 401k including an employer match, discount perks, rewards, and more. We invest in our employees - Every employee is eligible for education reimbursement for certifications, degrees, or professional development. Reimbursement amounts may fluctuate due to IRS limitations. We want you to grow as an expert and a leader and offer flexibility for you to take a course, complete a certification, or other professional growth and networking. We are committed to supporting your curiosity and sustaining a culture that prioritizes commitment to continuous professional development.

We work hard; we play hard. Kentro is committed to incorporating fun into every day. We dedicate funds for activities - virtual and in-person - e.g., we host happy hours, holiday events, fitness & wellness events, and annual celebrations. In alignment with our commitment to our communities, we also host and attend charity galas/events. We believe in appreciating your commitment and building a positive workspace for you to be creative, innovative, and happy.

How to Apply

To apply to Kentro Positions- Please click on the job link and then click the blue "Apply" button at the top right of Job Description. Please upload your resume and complete all the application steps. You must fully submit the application for Kentro to consider you for a position. If you need alternative application methods, please email [redacted] and request assistance.

Accommodations

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable Accommodations may be made to enable qualified individuals with disabilities to perform the essential functions. If you need to discuss reasonable accommodations, please email [redacted].

#LI-JG1

#kentro

Similar Jobs

More Jobs at Kentro

More Education, Government & Non-Profit Jobs

Find similar Cybersecurity Audit Manager (Mid) jobs: