×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant

Lead IT Security Auditor

Job in Cleveland, Cuyahoga County, Ohio, 44101, USA
Listing for: The Sherwin-Williams Company
Full Time position
Listed on 2025-12-08
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant
Job Description & How to Apply Below

As a Lead IT Security Auditor within the Global Internal Audit Department at Sherwin-Williams, you will play a critical role in strengthening the organization's cybersecurity posture and IT risk management capabilities. You will help lead a team of IT Auditors, providing daily coaching and mentoring to ensure high-quality execution of audits with a strong emphasis on information security and compliance.

You will regularly engage with external auditors, IT leadership, and business stakeholders to address control gaps, resolve audit findings, and recommend enhancements to security and business processes. Your insights will help drive continuous improvement in areas such as cloud security, data protection, and regulatory compliance (e.g., SOX, GDPR, NIST, ISO 27001).

As a more senior member of the audit team, you will also ensure adherence to the highest professional standards, maintain strict confidentiality, and promote a culture of security awareness and risk-based thinking across the enterprise.

Because this role involves access to confidential financial information, the Company has determined that a review of criminal history is necessary to protect the business and its operations and reputation and to provide similar protections for its clients and potential investments.

CORE RESPONSIBILITIES:
  • Lead and Execute IT Security Audits
    • Conduct audits focused on IT security risks, including network security, application security, endpoint protection, identity and access management (IAM), data protection, vulnerability management, operational technology (OT) security, risk management, data privacy, and threat intelligence/incident response.
    • Evaluate the effectiveness of cybersecurity controls and identify opportunities to enhance controls across infrastructure, applications, and cloud environments.
    • Collaborate with IT, Info Sec, and compliance teams to ensure alignment with regulatory requirements (e.g., NIST, ISO 27001, SOX, HIPAA).
    • Develop and execute risk-based audit plans and procedures tailored to emerging threats and technologies.
    • Prepare detailed audit reports with actionable recommendations for risk mitigation and control enhancement.
    • Monitor remediation efforts and validate corrective actions taken by management.
    • Stay current with cybersecurity trends, threat intelligence, and evolving regulatory landscapes.
    • Support enterprise risk assessments and contribute to the development of the organization's risk management strategy.
  • Support the annual Sarbanes-Oxley (SOX) compliance program
    • Stay up to date on current guidance and methodologies and implement best practices to streamline approach to reduce costs and improve efficiencies
      • Assist in the completion of ITGC and business process walkthroughs including the preparation and review of supporting documentation to meet internal and external deadlines
      • Work independently with IT and the business to understand application systems, business processes, resolve issues and communicate findings
      • Understand SW's divisions and in-scope IT applications, including key data flows, in order to continuously identify opportunities for compliance improvement
      • Consult with key process and control owners on ITGCs, application controls, and IPE considerations for key systems within the organization.
  • Responsible for training and developing IT Auditors
    • Supervise daily work of approximately 1-2 IT Auditors
    • Develop IT Auditors through coaching and mentoring
    • Develop IT Auditors through effectively delegating IT audit tasks and providing guidance/learning opportunities
    • Provide performance feedback, training and performance reviews
    • Manage field work, inform supervisors of the IT audit engagement status and manage IT Auditors performance
    • Foster an efficient, innovative and team-oriented work environment
  • Departmental Planning
    • Meet with Department Managers on a regular basis to stay informed of current projects, future projects, and to address management's concerns
    • Participate in recruiting efforts as needed
  • Personal Career Development
    • Develop and maintain productive working relationships with company personnel, assess audit clients' satisfaction and proactively maintain contact with the audit client throughout the year
    • Use technology and resources to continually learn/share knowledge with team
    • Adhere to the highest degree of professional standards and strict confidentiality
    • Attend professional development and training sessions on a regular basis
    • POSITION REQUIREMENTS

    Formal

    Education:

    Required:

    • Bachelor's Degree from an accredited institution is required

    Preferred:

    • Bachelor's Degree from an accredited institution in Business, Management Information Systems, Computer Information Systems, Cybersecurity, Computer Science, or IT
    • Advanced degrees or certifications (CISSP, CISM, CRISC, CISA, SANS GIAC etc.)

    Knowledge & Experience

    Required:

    • 4 years of prior work experience in cybersecurity, IT audit, or consulting at a Big 4 firm or a similarly regulated public company is preferred.
    • Must be legally authorized to work in the United States…
    To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
    (If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search