- Develop and maintain a comprehensive annual IT audit plan based on thorough risk assessments.
- Define the audit scope, objectives, and methodologies for each engagement to ensure a structured and effective approach.
- Collaborate with senior management to align audit activities with the organization’s business objectives and strategies.
- Lead and execute in-depth IT audits, encompassing infrastructure, applications, and IT processes.
- Assess the effectiveness of internal controls, risk management strategies, and governance practices.
- Identify and document vulnerabilities, risks, and areas of non-compliance, providing actionable insights.
- Continuously monitor and evaluate emerging risks in IT and cybersecurity to proactively address potential challenges.
- Prepare detailed audit reports outlining findings, recommendations, and management responses for key stakeholders.
- Track and monitor the implementation of audit recommendations to ensure timely and effective resolution.
- Conduct follow-up audits to confirm that corrective measures have been successfully implemented.
- Collaborate with IT teams to provide expert guidance on internal controls, compliance requirements, and risk mitigation strategies.
- Advise on best practices and frameworks for IT governance, security, and compliance, including PCI-CP, PCI-DSS, ISO 27001, and GDPR.
- Serve as the primary liaison with external auditors during IT audit engagements, ensuring seamless coordination and support.
- Align internal audit findings with external audit outcomes to ensure consistency and comprehensive risk coverage.
- Manage and mentor internal audit team members, fostering professional growth through training and development initiatives.
- Oversee the execution of audit tasks, ensuring quality, accuracy, and adherence to established standards.
- Contribute to incident response and crisis management efforts by offering insights into IT risks and control measures.
Scientific bachelor’s degree or similar, preferred computer sciencePCI-CP, PCI-DSSISO 27001, GDPR, COBIT4 years or higher at the same job