Conduct audits or lead audit teams in the performance of IT audits and reviews of systems, applications and IT processes. Prepare and report results to executives and Audit Committees.
Carry out IT security audits (e.g. network, operating system and data centre), including evaluating if security vulnerabilities are properly identified and mitigated. Coordinate the scope and performance of these reviews with business units and external security experts;
Designs audit procedures to execute the annual audit plan, assess controls and to meet audit objectives;
Perform various other reviews of IT management policies and procedures such as change management, business continuity planning/ disaster recovery and information security to ensure that controls surrounding these processes are adequate;
Perform pre and post-implementation reviews of system implementations or enhancements;
Carry out special audit projects and provides advisory and consulting services to management;
Recommends revisions to audit procedures to enhance efficiencies. Reviews internal controls throughout the company by evaluating the adequacy of system controls and recommends improvements;
Evaluates the adequacy and timeliness of management’s response and the corrective action taken on significant audit recommendations;
Maintains continued education requirements and regular and predictable attendance;
Performs other duties as assigned.
Bachelor’s degree in Computer Science or similar qualifications, with a minimum Second Upper degree class;
Recognized auditing/information system certifications ( e.g CISA, CIA,CISSP)
Understanding of multiple technology domains including software development, Windows, database management, networking, and UNIX (preferred)
Prior position in IT Governance/IT Audit – internal audit or external auditing firm.
At least 3 years audit experience; With at least 2 of them in IT audit
Progressive achievement in one or more of the traditional IT disciplines (applications, operations, infrastructure, and management)