IT Internal Audit – Riyadh, Saudi Arabia – 3 to 4 years of experience
Job Overview
-
Date Posted16 March 2024
-
Expiration date1 June 2024
-
Experience3 Year
-
GenderAny
Job Description
Title: Senior Associate – IT Internal Audit
Employment: Secondment for 6 months (May be Extended for another 3 months)
Job Based City: Riyadh, Saudi Arabia
One of our client in Saudi Arabia is looking for a Senior Associate – IT Internal Audit with 3 years of experience conducting IT and Information Security Audits and related assignments such as risk assessments, gap assessment against international standards such as ISO 27001 etc.
Experience:
- Financial institutions or big4 experience is a Must
- Internal Audit Experience is a big plus
3-4 years of experience
Responsibilities:
- To perform IT & IS audits with focus on IT and IS related processes and technologies.
- Experience in performing IT & IS Governance, IT Operations, Cyber Security Audits, risk assessment etc.
- Understanding of key IT & IS standards such as COBIT, ITIL, ISO 27001
Must be technically sound and have basic knowledge of key IT & IS solutions such as IAM, PAM, SIEM, EDR etc.
- Knowledge of testing General IT controls, Information security, change management, data center, network operations, Configuration Reviews (for Network devices, databases, Operations systems), Security Reviews, Regulatory audits etc.
- Plan, design and execute audit programs related to IT & IS Audits
- Prepare APM, perform walkthroughs, conduct risk assessment, and prepare risk-based RCM.
- Prepare the scope for audits, ensuring it covers all the risks and areas identified within in Risk Control Matrix.
- Participate in the execution of the audit plan in line with the defined policies and procedure and coordinate with audit stakeholders to ensure smooth audit engagements.
- Develop and document the relevant working papers required in the audits, in line with IA methodology and international standards.
Preferred Requirements:
- Professional qualification e.g., BA/BS in Computer Science or Computer Engineering etc.
- CISA required, CISM / ISO 27001 LA certification is a plus.
- Excellent verbal and written communication skills – Must
be able to communicate effectively to various levels
including executive management. • Excellent project management skills – Must be organized, detail oriented, and able to work well under deadlines.
- Strong technical and/or management background in technical systems/environments
- Big 4 or other consulting firm experience preferred.