Senior IT Auditor

Stellarton, Canada • Contractor

Posted on Tue, Jul 7, 2026

Sobeys is full of exciting opportunities, and we are always looking for bright new talent to join our team. We currently have an 12 months contract opportunity for a Senior IT Auditor. This role can be based out of our offices located in Mississauga; ON, Stellarton, Dartmouth; NS, Calgary. AB

In this role, you will apply a systematic and disciplined approach to evaluating and improving the effectiveness of technology risk management, cybersecurity, IT operations, and governance across the organization. This position is well suited for an experienced technology auditor with a strong background in cybersecurity audits, IT operational reviews, and large-scale transformation initiatives.

Reporting to the Manager, IT, Cyber and Transformation Audit, you will be responsible for executing risk-based technology audits and transformation assurance engagements that provide independent, value-added insights to senior leadership. This role offers broad exposure across the enterprise technology landscape and the opportunity to influence how technology risks are identified, managed, and mitigated.

Key Responsibilities

Assist the IT Audit Manager in planning, scoping, and executing IT, cybersecurity, and transformation assurance audits, including reviews of: Cybersecurity governance and operations, Cloud environments (IaaS, PaaS, SaaS), Infrastructure and end-user computing, Identity and access management, IT service management and operational processes and major system implementations and digital transformation initiatives Execute risk-based assurance and advisory engagements aligned with the approved annual IT Audit Plan. Assess the design and operating effectiveness of technology and cyber controls using recognized frameworks (e.g., NIST, ISO, COBIT). Identify control gaps, root causes, and emerging risks, and develop practical, business-aligned recommendations. Assist the Manager in preparing clear, concise, and well-supported audit reports, effectively communicating issues, risks, and recommendations to management and senior leadership. Maintain ongoing dialogue with stakeholders throughout the audit lifecycle to ensure transparency and alignment. Perform follow-up and validation of management action plans to confirm timely and effective remediation. Provide independent assurance over large-scale technology and business transformation initiatives, including system implementations, data migrations, and process redesigns. Evaluate project governance, risk management practices, control design, and readiness for go-live and postimplementation. Partner with project teams to identify control and risk considerations early, while maintaining auditor independence. Support Internal Audit leadership in the development and refresh of the annual IT Audit Plan, incorporating emerging technology and cyber risks. Mentor and provide guidance to audit team members on cybersecurity risks, IT operations, and audit methodologies. Demonstrate strong professional judgment, intellectual curiosity, and critical thinking when evaluating complex technology environments.

What You Have to Offer

Undergraduate degree in Information Systems, Computer Science, IT Management, Cybersecurity, or a related field. CISA designation required. Additional certifications such as CISSP, CISM, CRISC, or CCSP strongly preferred. Minimum of 5 years of progressive experience in Technology Audit, with demonstrated experience in:

Cybersecurity audits IT operational audits Cloud and emerging technology environments Transformation or large-scale IT initiatives

Strong technical knowledge of Operating systems, databases, and networks, Identity and access management, Cybersecurity controls and monitoring, Cloud architectures and security models Working knowledge of governance and control frameworks including NIST, ISO 27001, COBIT, and ISF. Strong planning, organizational, and project management skills with the ability to manage multiple engagements concurrently. Excellent written and verbal communication skills, with the ability to translate technical issues into clear, actionable business insights. Proven ability to build effective relationships and challenge constructively in a collaborative environment. Ability to lead audit engagements independently while partnering effectively with stakeholders at all levels of the organization.

View the interactive listing →