Senior IT Auditor

Responsibilities:

1. Carry out review of organizational activities assigned following departmental standards, as well as the Standards for the Professional Practice of Internal Audit.
2. Assess internal control processes.
3. Produce and review reports and audit work papers, ensuring effective documentation of results of reviews on assigned activities and the recommended actions that management should take for easy follow-up.
4. Identify potential IT risks and related issues by applying knowledge of Information Technology industry trends and the present IT environment.
5. Participate in major IT initiatives and projects, as well as in reviews of security systems and internal controls under development.
6. Possess advanced knowledge of network and application vulnerability assessment, IT practices, risk assessment practices, change control, data privacy, and business continuity.
7. Have broad audit experience across various areas of IT, including databases, operating systems, and applications.
8. Exhibit strong attention to detail, organization, and project management skills.
9. Demonstrate sound judgment, business risk awareness, and an inquisitive personality; ability to think critically and assess events and outcomes professionally.
10. Show strong ability to research and gather information from both business and IT functions.
11. Utilize strong analytical and problem-solving skills to resolve issues promptly as they occur.
12. Work collaboratively and cooperatively with all employees irrespective of their status in the organization.
13. Manage multiple projects and responsibilities effectively.
14. Exhibit exceptional interpersonal skills to encourage others to contribute to achieving departmental goals and to build consensus across diverse teams.

Minimum Requirements:

1. A Bachelor's degree in Information Technology, Computer Science, Business Administration, or a related field. Relevant certifications (e.g., ITIL, TMMI, etc.) are highly beneficial.
2. Minimum of 5-7 years of experience in IT audit, risk management, or compliance roles.
3. In-depth understanding of IT governance frameworks such as ITIL or ISO 27001.
4. Knowledge of relevant industry standards and regulations.
5. Strong knowledge of risk management practices, including risk assessment, mitigation strategies, and control frameworks.
6. Experience in managing IT governance projects and collaborating with cross-functional teams.
7. Strong ability to analyze governance and compliance data to identify trends, risks, and opportunities for improvement.
8. Exceptional written and verbal communication skills, with the ability to convey complex concepts clearly to stakeholders at all levels.
9. Experience working with IT auditing and IT teams.

Preferred Qualifications:

1. Familiarity with business continuity planning and disaster recovery processes.
2. Expertise in cloud governance and cloud security frameworks.
3. Knowledge of business intelligence and reporting tools to track IT governance metrics.
4. Knowledge in applying ISO/IEC 27001, ISO/IEC 20000, ISO/IEC 22301, ISO/IEC 27018, ISO/IEC 9001, CMMI, ITIL, TMMI is a plus.