Title: IT Governance and Management Audit Novice
Job Description
- Be responsible for the audit of the IT application controls, IT general controls, IT Governance, and Cyber/IT security, to ensure that controls surrounding these processes are adequate and be proactively provide the value-added recommendation.
- Perform the special audit for IT fraud / mishandling as per assignment.
- Prepare and report the audit results to executives and Audit Committees. Follow-up the management response on recommendation, and support implementation of preventive or corrective actions.
- Initiate the data analytic cases (with visualize report) to improve audit efficiency and effectiveness.
- Participate in IT projects with independent advisory to provide the advice on proper controls in the project life cycle
- Provide consulting service on IT control of responsible task. Be an advisor to management on improving governance, processes, systems, controls and understanding of risks.
- Stay up to date with related regulatory requirement, guideline and best practices.
Job Qualification
- Bachelor or above with Information Technology, Computer Science, Computer Engineering or IT related fields.
- Professional certification (e.g. CISA, CISM, CRISC, CGEIT, CIA, ISO 27001 Lead auditor etc.) in IT Audit / Security is considered beneficial.
- Proven experience within one or more of the following areas: IT application controls audit, information/cyber security, or information management.
- At least 3 years of experience in internal or external audit especially in Banking or Financial Institute will be an advantage
- Strong understanding of concepts related to IT audit, information security, general IT controls, application controls, technology risks, or information management.
- Ability to apply the related IT standard and good practice e.g COBIT, ITIL, ISO27001, PCI/DSS, Cyber Security to audit work
- Being a self-driven, team player, well-organized with analytical skills.
- Strong written/verbal communication, leadership, collaboration & influencing skills.