Information System/ Technology Audit Manager

REQUIREMENTS:

• Management Information System/Information Technology, Computer Science, BS Accountancy, or Internal Audit.
• With at least 2 years of information system/technology audit management experience with power generation company or at least 8 years of combined IT auditing experience (infrastructure, application, general controls,and integrated audits) in a Big 4 audit firm or internal audit
• Knowledgeable in IT audit frameworks/methodologies, and IT Governance and Risk Management concepts
• Thorough knowledge of IT general controls and application controls
• Familiarity in auditing widely used server, platform, database, and end point technologies (e.g., windows server,Linux, VMware, etc.) as well as familiarity with cyber security concepts
• With experience in data analytics tools, e.g., ACL
• Organizational and leadership abilities, and excellent communication skills
• Effective and efficient project management skills
• Flexible and can adapt in a fast-paced environment
• Experience in auditing ISO 27001/27002 is an advantage
• Working knowledge in cyber risks, related standards, processes and solutions is an advantage
• Proficiency in SAP Hana and SCADA applications is an advantage
• Experienced in facilitating audit and risk committee meetings
• Professional Certifications are an advantage (e.g., CRISC, CISM, CISSP, CISA, CPA, CIA)

 DUTIES AND RESPONSIBILITIES:

• Assists Chief Audit Executive in the annual risk assessment and IA planning
• Prepares risk-based audit engagement program for internal audit projects assigned
• Performs internal audit projects/work assigned as well as oversees audit engagements with external auditors
• Performs effective IT risk and control assessments
• Completes audit engagements on time and prepares audit reports detailing observations and value-adding recommendations agreed with process owners and concerned management
• Presents audit findings and finds ways to increase compliances, enhance efficiency and effectiveness of IT controls and IT risk management processes
• Presents to the Audit & Risk Committee the results of the internal audits performed
• Provides consulting services to clients on information technology topics such as application development best practices or security measures
• Coordinates audits with other team members, including auditors and managers
• Keeps abreast of new and emerging technologies and their impact on the client’s business and control environment
• Trains and mentors less experienced staff members
• Performs other related duties that may be assigned by the CAE/Department Head from time to time

With over 90 years' combined experience, NES Fircroft (NES) is proud to be the world's leading engineering staffing provider spanning the Oil & Gas, Power & Renewables, Infrastructure, Life Sciences, Mining, Automotive and Chemicals sectors worldwide.With more than 100 offices in 45 countries, we are able to provide our clients with the engineering and technical expertise they need, wherever and whenever it is needed. We offer contractors far more than a traditional recruitment service, supporting with everything from securing visas and work permits, to providing market-leading benefits packages and accommodation, ensuring they are safely and compliantly able to support our clients.