Executive, IT Audit

Objectives:

Conduct examinations, evaluations and reviews to ensure the adequacy and effectiveness of internal controls, reliability and integrity of the IT systems, compliance of policies, plans, procedures and regulations, and proper safeguarding of assets.

Job Responsibilities:

• Annual Audit Plan

Assist in the development of Annual Audit Plan based on appropriate risk methodologies by taking into account strategies and management concerns in order to specify the proposal internal audit coverage over the planning cycle.

• Audit Planning

Prepare Audit Planning Memorandum and its related planning documents for every audit assignment in order to specify the internal audit coverage and ensure audit are conducted within the timeline over the audit schedule.

• Audit Activities

Carry out audit assignments as per Annual Audit Plan in order to ensure that the audit activities are conducted within the timeline over the audit schedule.

• Management of Audit Activities

Prepare and file working papers of audit assignments according to auditable areas in order to assist in providing assurance on the effectiveness of the organisation internal control system and provides recommendations for improving the organisation’s operations.

• Audit Report

Prepare audit report with proper recommendations upon finalisation of fieldwork in order to assist the Board of Audit Committee / Management’s approval in providing assurance on the effectiveness of the Company’s internal control system; and provide recommendations for improving the Company’s operations.

• Follow-up Audit

Assist in follow-up audit with auditees on the outstanding audit findings through the issuance of Audit Tracking Report and verification of report findings in order to ascertain whether corrective actions have been taken and issues have been closed-out.

• Adhoc Audit

Perform and assist adhoc audit and investigation of significant suspected fraudulent activities or other reviews in order to assist the Board of Audit Committee / Management in providing assurance on the effectiveness of the Company’s internal control system; and to provide recommendations for improving the Company’s operations.

Requirements:

• Bachelor’s Degree in Computer Engineering, Computer Science or related field.
• Minimum three (3) years of related working experience in IT audit or related role.
• Good knowledge in IT operating systems, information security and network infrastructure.
• Familiar with ISMS, NIST, PDPA, PCI-DSS, GDPR and/or similar standards.
• Strong understanding of risk management and ability to independently plan IT audit.
• CIA, CISA, GIAC, CompTIA Security+ or similar certification (s) would be highly preferred.
• Knowledge of emerging technologies on IT and frameworks.
• Ability to communicate complex technical findings to non-technical stakeholders.
• Able to work independently or in teams and manage multiple projects simultaneously.

Objectives:

Conduct examinations, evaluations and reviews to ensure the adequacy and effectiveness of internal controls, reliability and integrity of the IT systems, compliance of policies, plans, procedures and regulations, and proper safeguarding of assets.

Job Responsibilities:

• Annual Audit Plan

Assist in the development of Annual Audit Plan based on appropriate risk methodologies by taking into account strategies and management concerns in order to specify the proposal internal audit coverage over the planning cycle.

• Audit Planning

Prepare Audit Planning Memorandum and its related planning documents for every audit assignment in order to specify the internal audit coverage and ensure audit are conducted within the timeline over the audit schedule.

• Audit Activities

Carry out audit assignments as per Annual Audit Plan in order to ensure that the audit activities are conducted within the timeline over the audit schedule.

• Management of Audit Activities

Prepare and file working papers of audit assignments according to auditable areas in order to assist in providing assurance on the effectiveness of the organisation internal control system and provides recommendations for improving the organisation’s operations.

• Audit Report

Prepare audit report with proper recommendations upon finalisation of fieldwork in order to assist the Board of Audit Committee / Management’s approval in providing assurance on the effectiveness of the Company’s internal control system; and provide recommendations for improving the Company’s operations.

• Follow-up Audit

Assist in follow-up audit with auditees on the outstanding audit findings through the issuance of Audit Tracking Report and verification of report findings in order to ascertain whether corrective actions have been taken and issues have been closed-out.

• Adhoc Audit

Perform and assist adhoc audit and investigation of significant suspected fraudulent activities or other reviews in order to assist the Board of Audit Committee / Management in providing assurance on the effectiveness of the Company’s internal control system; and to provide recommendations for improving the Company’s operations.

Requirements:

• Bachelor’s Degree in Computer Engineering, Computer Science or related field.
• Minimum three (3) years of related working experience in IT audit or related role.
• Good knowledge in IT operating systems, information security and network infrastructure.
• Familiar with ISMS, NIST, PDPA, PCI-DSS, GDPR and/or similar standards.
• Strong understanding of risk management and ability to independently plan IT audit.
• CIA, CISA, GIAC, CompTIA Security+ or similar certification (s) would be highly preferred.
• Knowledge of emerging technologies on IT and frameworks.
• Ability to communicate complex technical findings to non-technical stakeholders.
• Able to work independently or in teams and manage multiple projects simultaneously.