Posted 24 June, 2026
IT Audit Manager - SOC 1/ SOC 2/ ISAE 3402 (Third Party Assurance)
Forvis Mazars
Dublin, Dublin, Ireland
Full Time
Reference: 1446287121
About Forvis Mazars
Forvis Mazars in Ireland is a leading professional services firm with ambitious growth plans. As part of the global Forvis Mazars Group, we operate across 100+ countries with over 50,000 professionals, delivering high-quality assurance and advisory services. Our Third Party Assurance team supports clients in strengthening trust through independent assurance reporting (SOC 1, SOC 2, ISAE 3402), combining technical expertise with a collaborative, client-focused approach.
Role Summary
We are seeking an IT Audit Manager to lead the delivery of SOC 1, SOC 2, and ISAE 3402 engagements. This role combines IT control and security knowledge, client facilitation, and team leadership, with a strong emphasis on leading client workshops to define scope and control environments. This is not a pure cyber security engineering role. The focus is on applying IT security knowledge within SOC audit engagements, leading workshops, defining scope, and delivering audit outcomes. Candidates with experience purely in external IT audit need not apply.
Role Details
Location: Ireland / Hybrid
Employment Type: Full-time
Reporting to: Head of Third Party Assurance
Key Responsibilities
Required Qualifications & Experience
• Ability to understand how IT controls integrate with broader business process controls
Core Technical Knowledge
Candidate Profile
Forvis Mazars in Ireland is a leading professional services firm with ambitious growth plans. As part of the global Forvis Mazars Group, we operate across 100+ countries with over 50,000 professionals, delivering high-quality assurance and advisory services. Our Third Party Assurance team supports clients in strengthening trust through independent assurance reporting (SOC 1, SOC 2, ISAE 3402), combining technical expertise with a collaborative, client-focused approach.
Role Summary
We are seeking an IT Audit Manager to lead the delivery of SOC 1, SOC 2, and ISAE 3402 engagements. This role combines IT control and security knowledge, client facilitation, and team leadership, with a strong emphasis on leading client workshops to define scope and control environments. This is not a pure cyber security engineering role. The focus is on applying IT security knowledge within SOC audit engagements, leading workshops, defining scope, and delivering audit outcomes. Candidates with experience purely in external IT audit need not apply.
Role Details
Location: Ireland / Hybrid
Employment Type: Full-time
Reporting to: Head of Third Party Assurance
Key Responsibilities
- Lead SOC 1, SOC 2, and ISAE 3402 audits from planning to completion
- Review IT control design and operating effectiveness
- Ensure delivery to quality, timelines, and budgets
- Lead client workshops to define audit scope and identify control objectives
- Clarify scope boundaries, systems, and processes in scope
- Manage client relationships and act as primary contact
- Manage and mentor team members and review work
- Identify risks and ensure adherence to standards
- Support business development and practice growth
Required Qualifications & Experience
- Fluent English
- Professional services experience (mandatory)
- 4-8 years' experience in IT audit, IT controls, cyber security, or IT risk
- Experience leading structured client workshops
- Strong working knowledge of IT security and control environments
• Ability to understand how IT controls integrate with broader business process controls
- Professional certification (CISA, CISSP, CISM) or cloud controls experience (AWS, Azure, GCP)
- Bachelor's degree in relevant technical discipline
- Strong client-facing communication skills
Core Technical Knowledge
- Expertise in auditing IT security controls (access management, network security, monitoring, patching, incident management) in multiple environments
- Strong understanding of SOC 1 / SOC 2 / ISAE 3402 frameworks, including control design and testing
- Awareness of IT-dependent and automated controls within business processes
- Understanding of cloud environments and key risks (AWS, Azure, GCP)
Candidate Profile
- Strong communication and workshop facilitation ability
- Ability to apply technical knowledge in an audit context
- Strong judgement and problem-solving skills
- Ability to identify and improve controls
- Proactive and results-driven
