Title:  Digital & Deep Technology Audit Novice

Job Description

1. Be responsible for the audit of the IT application controls, IT general controls, IT Governance to ensure that controls surrounding these processes are adequate and be proactively provide the value-added recommendation.
2. Perform the special audit for IT fraud / mishandling as per assignment.
3. Prepare and report the audit results to executives and Audit Committees. Follow-up the management response on recommendation, and support implementation of preventive or corrective actions.
4. Initiate the data analytic cases (with visualize report) to improve audit efficiency and effectiveness.
5. Participate in IT projects with independent advisory to provide the advice on proper controls in the project life cycle
6. Provide expertise in emerging IT-risks and Technology such as IT governance, cyber/information security, data privacy, 3rd party management and Blockchain.
7. Stay up to date with related regulatory requirement, guideline and best practices.

Job Qualification

• Bachelor or above with Information Technology, Computer Science, Computer Engineering or IT related fields.
• Professional certification (e.g. CISA, CISM, CRISC, CGEIT, CIA, ISO 27001 Lead auditor etc.) in IT Audit / Security is considered beneficial.
• Proven experience within one or more of the following areas: IT application controls audit, information/cyber security, or information management.
• At least 3 years of experience in internal or external audit especially in Banking or Financial Institute will be an advantage
• Strong understanding of concepts related to IT audit, information security, general IT controls, application controls, technology risks, or information management.
• Ability to apply the related IT standard and good practice e.g COBIT, ITIL, ISO27001, PCI/DSS, Cyber Security to audit work
• Knowledge in Mobile Application security, Blockchain and Digital Asset would be a plus.
• Being a self-driven, team player, well-organized with analytical skills.