We are seeking a highly driven IT Auditor to lead and execute risk-based IT audit initiatives, ensuring robust internal controls, regulatory compliance, and the continuous enhancement of our technology governance framework.
Key Responsibilities:
- Develop and execute risk-based IT audit plans, including annual audit planning and budget allocation, to evaluate the effectiveness of IT risk management, internal controls, and compliance.
- Perform IT audits and advisory engagements covering systems, infrastructure, and technology processes in accordance with established audit methodologies and standards.
- Design audit programs, define testing procedures, and prepare comprehensive audit documentation to ensure quality, accuracy, and accountability of audit results.
- Assess the effectiveness of IT general controls, application controls, data integrity, and system security to support operational reliability and risk mitigation.
- Communicate audit findings and recommendations effectively to stakeholders, including management, auditees, and relevant parties.
- Monitor and follow up on audit findings (internal and external), ensuring timely implementation and adequacy of corrective actions.
- Continuously enhance audit methodologies, frameworks, and SOPs to align with industry standards and evolving technology risks.
- Stay updated with emerging technologies and IT audit practices, including audit automation and continuous auditing, to improve audit effectiveness and efficiency.
Requirement:
- Bachelor's degree in Information Technology, Information Systems, Computer Science, Accounting, or a related field.
- Minimum 3–5 years of experience in IT audit, IT risk, or information security, preferably within financial services or technology-driven industries.
- Strong understanding of IT governance, risk management, and internal control frameworks (e.g., COBIT, ISO 27001, ITIL, or NIST).
- Experience in conducting IT general controls (ITGC), application controls, and infrastructure/security assessments.
- Familiarity with audit methodologies, standards, and best practices (e.g., IIA Standards, risk-based auditing).
- Ability to analyze complex systems, identify risks, and provide practical, value-added recommendations.
- Strong communication and stakeholder management skills, with the ability to present findings clearly to both technical and non-technical audiences.
- Experience in audit documentation, reporting, and follow-up monitoring of audit findings.
- Professional certifications such as CISA, CISSP, CIA, or equivalent are preferred.
- High level of integrity, attention to detail, critical thinking, and a proactive mindset with a commitment to continuous learning.
We invite qualified candidates to apply for this opportunity and be part of our journey in driving digital transformation. Only shortlisted candidates will be contacted. Thank you for your interest in joining our organization.
