Cyber Resilience Auditor

Cyber Resilience Auditors play an independent and impartial role, typically working in larger organizations and with external auditors to check compliance with cyber resilience policies, standards and processes, and advise whether resilience and security objectives are being achieved. 

They focus on planning and conducting audits, and are skilled in being able to gain an understanding of the activities they are auditing and in applying appropriate auditing techniques. At more senior levels, auditors will prioritize allocation of audit resources.

Typical Tasks

Conduct audits to assess compliance with regulations, standards, policies and guidance on cyber resilience risk management

  • Develop audit plans
  • Identify trends and weaknesses in security
  • Report and justify audit findings
  • Recommend responses to audit findings.

Potential Next Steps

Cyber Resilience Manager, Cyber Resilience Consultant, IT Security Architect

How to get there 

AXELOS professional certifications are recognized worldwide by employers as an indicator of your skills and commitment as an ITSM professional. The following certifications are relevant for professionals working in cyber resilience and will support your development into consultancy roles:

RESILIA™ Foundation

  • Introduction to cyber resilience.
  • How decisions impact good/bad cyber resilience.

Learn More About RESILIA™ Foundation

RESILIA™ Practitioner

  • What does effective cyber resilience look like?
  • What are the risks and issues that can easily hit cyber resilience?
  • How to get the best balance of risk, cost, benefits and flexibility within an organization.

Learn More About RESILIA™ Practitioner

ITIL® Foundation

ITIL fundamentals including the five core ITIL lifecycle stages:

  • Service Strategy
  • Service Design
  • Service Transition
  • Service Operation
  • Continual Service Improvement.

Learn More About ITIL® Foundation

Service Operation / Operational Support and Analysis

  • Support service components
  • Execute operation control activities to manage and deliver services
  • Maintain user satisfaction with IT services
  • Determine the appropriate control action for events
  • Ensure actions for events are communicated to the appropriate functions
  • Automatically detect incidents before an outage occurs
  • Enhance business perception of IT through use of a professional approach.

Learn More About Service Operation

Learn More About Operational Support and Analysis

Continual Service Improvement

  • Identify opportunities for improving services, processes and tools
  • Reduce the cost of providing services
  • Ensure that IT services enable the required business outcomes
  • Identify what needs to be measured, analyzed and reported for improvement.

Learn More About Continual Service Management