IS Auditor

IS Auditor

Core Responsibilities

• Execute Audits: Conduct comprehensive audits of IT systems, infrastructure, applications, and security controls.

• Evaluate Controls: Review General IT Controls (GITCs), application security configurations, and identity and access management (IAM) protocols.

• Ensure Compliance: Assess adherence to key regulatory frameworks, including CBSL Technology Risk Management & Resilience Guidelines, ISO 27001, and PDPA.

• Risk Mitigation: Identify emerging IT and cybersecurity risks and recommend practical remediation strategies.

• Resilience Review: Evaluate the effectiveness of business continuity (BCP), disaster recovery (DRP), and incident response plans.

• Reporting & Follow-up: Document audit findings and monitor the implementation of corrective actions with relevant stakeholders.

• Cross-Functional Collaboration: Partner with IT, Security, and Compliance teams, as well as external auditors, to streamline audit processes.

Requirements

• Education: Bachelor’s degree in IT, Computer Science, Cybersecurity, or a related field.

• Certification: CISA (preferred); ISO 27001 Lead Auditor or other industry-recognized certifications are a distinct advantage.

• Experience: 1–3 years of professional experience in IT auditing, information security auditing, or a related role.

• Industry Knowledge: Prior experience within regulated sectors, particularly banking or finance, is highly desirable.

  More Details
  Company Name : Abans Finance