Generally responsible in assisting the Internal Audit Head in overseeing the IT audit engagements and providing assurance and consulting services across functional departments of the organization and its subsidiaries.

1. Independently carry out audit engagements in accordance with the annual audit plan and known IT standards, e.g., International Organization for Standardization (ISO), National Institute of Standards and Technology (NIST), Open Web Application Security Project (OWASP), Center for Internet Security (CIS) Controls, and so forth
2. Perform review of systems and applications (e.g., web and mobile) with focus on governance, security, and business objectives alignment
3. Prepare audit reports supported by evidence-based working papers to ensure adequate documentation
4. Collaborate with different department representatives and process owners on various initiatives
5. Perform ad-hoc reviews or activities as may be required by the management

Preferably Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or equivalent

? Pro-active people management and strong leadership
? Strategic thinking & creative problem solving
? Effective communication & presentation skills
? Emotional intelligence
? Coaching & mentoring
? Excellent audit report writing skills
? interpersonal and relationship building skills
? Adept / familiarity in the use of MS Office 365 productivity tools (e.g. Word, Excel, Power Point, SharePoint, Teams, etc.)
? Adept / familiarity in the use of IT and scripting tools (e.g. Burp Suite, PowerShell, Python, JavaScript, etc.)

Bachelor's Degree (Computer Science, Computer Engineering, Information Systems)

1. At least 6 to 7 years of IT Audit experience in Systems/Applications and Information Security (of this, at least 3 years should be in a managerial position)
2. With IT Audit experience in a large organization or conglomerate, holding companies, real estate, manufacturing, logistics, energy, and mining industries
3. Knowledge of risk-based or global audit approach / methodology
4. Familiar with information technology and security standards and frameworks such as ISO, NIST, OWASP, CIS, and so forth
5. Performed web and mobile application vulnerability assessment and penetration testing using various tools
6. Basic and advanced - feature user of Audit Command Language (ACL) Analytics or other analytics tools

Generally responsible in assisting the Internal Audit Head in overseeing the IT audit engagements and providing assurance and consulting services across functional departments of the organization and its subsidiaries.