Senior Information Technology Auditor

Please note: This position is located in Dubai. If you're able to relocate and work from there, we encourage you to apply.


About the job:

Assist Internal Audit function in accomplishing its mission and objectives by performing assignments relating to the evaluation of the design and the operating effectiveness of IT General and Applications Controls, in addition to resolving audit fieldwork issues and conflicts, supporting continuous improvement, actively maintaining and developing IT audit and soft skills, and completing administrative tasks as required.


Key Responsibilities-


Performing IT Audit Assignments:

  • Develop in coordination with the (IT) Audit Manager the audit assignments scope and allocation of fieldwork tasks
  • Understand current process(es) and controls, and design process flow(s) (when required)
  • Identify risks related to respective processes
  • Develop/update assignment audit programs
  • Develop Risk Control Matrix (RCM) based on the identified risks
  • Develop and perform test of IT general and application controls
  • Document audit work, results, and retain evidence(s) collected
  • Monitor audit time to adhere to budget
  • Draft audit observations and audit report(s)
  • Discuss with the Audit Manager the draft audit report(s),
  • Participate/hold audit fieldwork meetings with the auditee(s) including opening and exit meetings
  • Perform and document audit follow up assignments (when required)
  • Perform and document application audit


Resolving any Issues and Conflicts:

  • Consider auditees' concerns on timing and audit scope during the planning stage
  • Discuss potential audit observations with control/process owners as soon as a potential exception occurs
  • Regularly (e.g., daily) discuss audit progress with the Audit Manager
  • Regularly (at least weekly) inform the auditees on audit results through clear and concise communication
  • Obtain auditees' commitment on action plans to mitigate the risks identified
  • Timely escalate any issues to the Audit Manager
  • Deliver constructive message and avoid any "surprise" (i.e., conflicting discussion) during the exit meeting


Supporting Continuous Improvement:

  • Participate in the development and implementation of the improvement projects as necessary


Actively Maintaining and Developing Auditing or other (soft) skills:

  • Actively maintain and develop auditing or other (soft) skills through active participation in internal meetings and/or training, based on feedback by Audit Manager(s)
  • Complete administrative tasks (e.g., T&E submission, evaluations and/or key learning documents) as per requirements


Completing Administrative tasks:

  • Complete administrative tasks (e.g., T&E submission, evaluations and/or key learning documents) as per requirements


Necessary Knowledge and Experience

  • 3-4 years of experience required in IT auditing, IT governance, IT service management, and/or IT security (e.g., COBIT 5, ITIL, ISO 27001, NIST), working for international auditing/accounting firm or large corporation. Including 1-2 years of experience required in advanced data analytics and/or data science applied to audit scoping or testing, and/or to provide insight on data
  • International exposure (preferred)
  • Knowledge in using business intelligence tools (e.g., Tableau, D3.js, R), understanding of the Standards for the Professional Practice of Internal Auditing and the Code of Ethics developed by the Institute of Internal Auditors, and knowledge of industry program policies, procedures, regulation, and laws.


Education & Certification requirements:

  • Completion of a university program (Bsc, BA or MSc) in Engineering or Computer Science, or Applied Mathematics, Statistics, Data Science or another quantitative field is preferred
  • Professional auditing certification (preferred), such as Certified Information Systems
  • Auditor (CISA), COBIT 5 (Foundation or Assessor, and/or Implementer), Certified Ethical Hacker (CEH), CISSP (Certified, Information Systems Security professional)
  • Knowledgeable in R, SQL and Python and Oracle/SAP; familiarity with Scala, Java or C++ is an asset


Job specific technical skills:

  • Proficiency (oral and written) in English and Arabic, Additional language(s) (is a plus)
  • Proficiency in MS Office 360, MS Teams suite, Teammate, Visio, SharePoint…
  • Knowledgeable in main ERP and applications such as SAP, Oracle, MS Dynamics, etc.
  • Knowledgeable in other non-standard applications in terms of design, operating mechanisms to ensure compliance with standards and regulations
  • Knowledgeable in auditing various infrastructure and network related technologies including architecture, design and security configurations
  • Understanding of ERP/software implementation project (auditing or project experience)

Post date: Today
Publisher: LinkedIn
Post date: Today
Publisher: LinkedIn