This website uses cookies to ensure you get the best experience.

Cognisys and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, which is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor
Skip to main content
Governance, Risk and Compliance (GRC) · Panama · Fully Remote

Information Security Auditor - Panama

Location: Panama (Remote)

Salary: US$30,000 - US$40,000

About the Role

Our GRC practice helps organisations strengthen their security posture, achieve certification, and maintain effective governance through structured, evidence-based assurance.

We operate a modern, forward-thinking audit function that assesses organisations against both established industry standards and emerging security and privacy frameworks. By combining deep expertise with leading audit and GRC tooling, we deliver high-quality, efficient, and insight-driven assurance that provides clarity, confidence, and measurable improvement. We work with clients across a wide range of industries and maturity levels, supporting everything from foundational compliance programmes to complex, multi-standard environments.

We are seeking an Information Security Auditor to join our GRC team. This is a client-facing, delivery-focused role suited to a detail-oriented assurance professional who is confident planning and performing audits, evaluating control effectiveness, and producing clear, actionable findings. You will be part of a high-performing audit function that embraces innovation, modern methodologies, and best-in-class tooling to deliver efficient, high-impact assurance engagements.

As an Information Security Auditor, you will deliver audit engagements across multiple clients and frameworks, assessing compliance against recognised standards as well as emerging regulatory and security requirements. You will support organisations in preparing for certification and external assurance, working closely with consultants, project managers, and client stakeholders to ensure audit activities are thorough, objective, and aligned to professional audit standards. You will also contribute to a progressive audit environment that continuously evolves its methods, technology, and approach to reflect the changing security landscape.

This role suits someone with strong foundational audit knowledge, practical experience with security and management system frameworks, and a desire to develop as a trusted assurance professional within a growing, technology-driven GRC practice.

Key Responsibilities

Audit Delivery

  • Lead and support the delivery of audit engagements across multiple clients and sectors.

  • Plan and conduct audits against recognised management systems and security frameworks.

  • Evaluate the design and effectiveness of controls through documentation review, sampling, and stakeholder interviews.

  • Gather, validate, and document audit evidence in line with established methodologies.

  • Identify non-conformities, observations, and opportunities for improvement.

  • Prepare structured audit reports with clear, risk-based findings and practical recommendations.

  • Support clients in understanding audit outcomes and next steps for remediation.

Client Engagement & Assurance Support

  • Conduct audit interviews with client stakeholders at operational and management levels.

  • Support organisations preparing for certification, surveillance, or external assessments.

  • Collaborate with Information Security consultants and project managers during wider client engagements.

  • Provide assurance insights that inform risk management and control improvement activities.

  • Maintain professional independence and objectivity throughout audit engagements.

Quality & Professional Standards

  • Apply consistent audit methodology aligned to recognised assurance practices.

  • Produce high-quality documentation with clarity, accuracy, and traceable evidence.

  • Manage audit timelines, deliverables, and engagement scope effectively.

  • Maintain confidentiality, professional ethics, and impartiality in all activities.

  • Contribute to the continuous improvement of internal audit processes, templates, and approaches.

Requirements

  • Experience conducting or supporting audits, ideally within security, risk, or compliance environments.

  • Practical experience with at least one ISO management system standard (ISO 27001 strongly preferred).

  • Internal Auditor or Lead Auditor training is advantageous.

  • Strong written and verbal communication skills, with the ability to present findings clearly and professionally.

  • Analytical mindset with the ability to assess controls, validate evidence, and form objective conclusions.

  • Excellent attention to detail and a structured, methodical approach to work.

  • Ability to manage multiple engagements and competing priorities.

  • Comfortable working independently and collaboratively within client-facing teams.

If you think you can deliver but don't match the criteria above, please don't be put off. We are very open-minded and focus on ability and attitude above skills.

What We Offer

  • A dynamic and supportive work environment where customer care and innovation drive everything we do.

  • A dedicated budget for your professional development

  • Access to an Employee Wellness Hub supported by Kara Connect for health and well-being resources.

  • Frequent team social events and celebrations.

  • 25 days holiday leave, plus a birthday holiday.

  • Refer a friend bonus scheme, up to £2,000!

Why Join Us?

At Cognisys, you will be part of a collaborative and innovative team that values your input and shares support. You'll have the opportunity to work on challenging projects that make a real impact for our clients. We'd love to hear from you if you want to challenge, lead and innovate! We're not just about the work; we're about the people. Join a team where innovation is celebrated, and your contributions are valued. We foster a collaborative environment where fresh ideas thrive, and professional growth is encouraged.

Applications

We’re always happy to help with questions, but to keep our process fair for everyone, we’re unable to accept applications via email—please apply directly through the job advert page.

Please feel free to reach out to Andrea, our Senior Recruiter, if you would like any further information, to discuss accessibility requirements, or if you require this information provided in an alternative format – andrea.smith@cognisys.group

We welcome applications from candidates from a range of diverse backgrounds and can make various reasonable adjustments to consider individual needs.

Department
Governance, Risk and Compliance (GRC)
Role
GRC Auditor
Locations
Panama
Remote status
Fully Remote
Picture of Andrea Smith
Contact Andrea Smith Senior Recruiter – Human Resources
Governance, Risk and Compliance (GRC) · Panama · Fully Remote

Information Security Auditor - Panama

Loading application form

Already working at Cognisys?

Let’s recruit together and find your next colleague.

Applicant tracking system by Teamtailor