About the Role:
As an Assistant IT Audit Manager, you will:
- Develop and execute a risk-based annual IT audit plan covering IT infrastructure, applications, cybersecurity, and other technology processes.
- Lead IT audits, including IT General Controls (ITGC), IT Application Controls (ITAC), and cybersecurity assessments.
- Evaluate IT governance, system development and change management, user access management, backup, and disaster recovery processes.
- Supervise and coach the IT Audit team to deliver high-quality audit engagements and continuous improvement.
- Monitor audit project timelines, resource utilization, and annual audit budget execution.
- Prepare clear and impactful audit reports with practical recommendations to strengthen internal controls and improve IT effectiveness.
- Follow up on audit findings and assess the effectiveness of corrective actions.
- Collaborate with IT, business units, external auditors, and regulators throughout audit engagements.
- Stay up to date with emerging technology trends, cybersecurity risks, and regulatory developments to provide strategic insights to management.
- Ensure audit activities are conducted in accordance with Internal Audit Standards and recognized frameworks such as COBIT, ISO 27001, NIST, and other relevant standards.
About You:
We're looking for someone who has:
- Bachelor's degree in Computer Science, Information Systems, Information Technology, or a related field.
- Professional certifications such as CISA, ISO/IEC 27001 Lead Auditor, or other relevant IT Audit/Security certifications.
- Strong knowledge of IT governance and control frameworks, including COBIT, ISO 27001, ITIL, NIST, and related standards.
- Good understanding of IT regulations and data protection requirements, including POJK, Bank Indonesia regulations (PBI), the Personal Data Protection Law (UU PDP), and other applicable industry standards.
- Strong analytical, communication, and presentation skills with the ability to communicate audit findings to senior stakeholders.
- Experience identifying technology risks, particularly within digital banking or financial services, and providing practical, risk-based recommendations.
- Minimum 3–5 years of experience in IT Audit, Information Security, IT Governance, or related fields.
- At least 1 year of experience leading IT audit teams or managing audit engagements is highly preferred.
- Experience in digital banking and/or fintech companies will be a strong advantage.