Professional certifications such as CISA, CISSP, CIA, or other relevant certifications
Minimum of 3 years IT audit experience (internal or external)
Strong knowledge of IT audit methodologies, control frameworks (COBIT, ISO 27001, NIST, PCI DSS) and information security principles
Experience with IT systems, cloud platforms (AWS, GCP, Azure), and data analysis using audit tools
Requirements:
Conduct IT audits to assess controls, security, and compliance with frameworks (COBIT, ISO 27001, NIST, PCI DSS) and report findings
Identify, assess, and document IT risk areas, vulnerabilities, and control weaknesses; provide remediation recommendations
Communicate audit results clearly to technical and non-technical stakeholders and present management with action plans
Support IT governance to ensure IT aligns with business objectives; collaborate with cross-functional teams and drive continuous improvement
Job description
Educational Qualifications: Certifications: Professional certifications such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Internal Auditor (CIA), or other relevant certifications are often required or preferred.
Technical Skills:
Audit and Compliance: Strong understanding of IT audit methodologies, control frameworks, and compliance standards (e.g., COBIT, ISO 27001, NIST, PCI DSS).
Risk Assessment: Ability to conduct risk assessments and identify potential risks and vulnerabilities in IT systems and processes.
Security Knowledge: In-depth knowledge of information security principles, practices, and technologies, including network security, application security, and data security.
IT Governance: Understanding of IT governance frameworks and practices to ensure that IT aligns with business objectives.
Data Analysis: Proficiency in using data analysis tools and techniques to analyze large datasets and identify patterns or anomalies.
Audit Tools: Familiarity with audit tools and software commonly used in IT audit processes.
IT Systems Knowledge: Understanding of various IT systems, cloud platforms (AWS, GCP, Azure), and technologies, including operating systems, databases, and network infrastructure.
Experience:
3 years Audit Experience: Previous experience in IT auditing, either as an internal or external auditor, is often required.
Industry Knowledge: Familiarity with the financial services/FinTech industry or sector in which the organization operates is beneficial.
Soft Skills:
Communication Skills: Strong verbal and written communication skills to effectively communicate audit findings and recommendations to both technical and non-technical stakeholders.
Analytical Skills: Strong analytical and problem-solving skills to assess complex IT systems and processes.
Attention to Detail: Meticulous attention to detail to identify and document potential risks and weaknesses.
Teamwork: Ability to work collaboratively with cross-functional teams, including IT professionals, business units, and management.
Ethical Conduct: High ethical standards and integrity to maintain confidentiality and objectivity in the audit process.
Adaptability: Ability to adapt to evolving technologies, regulations, and business environments.
Professional Development: Demonstrated commitment to ongoing professional development and staying updated on industry trends and best practices. Keep in mind that these specifications may vary depending on the organization's specific needs and the complexity of its IT environment.
Thank you in advance for providing all required information!
