IT Auditor (Manager)

Key Responsibilities

• Plan, execute, and report on IT audits (applications, infrastructure, networks, and cloud environments).
• Assess the effectiveness of internal controls, data integrity, cybersecurity, and compliance with relevant standards (e.g., ISO 27001, COBIT, NIST, SOC 2).
• Identify vulnerabilities and control gaps, and recommend remediation or process improvements.
• Review system development life cycles (SDLC), change management, and access management processes.
• Collaborate with IT, cybersecurity, and business teams to ensure risks are identified, documented, and mitigated.
• Perform data analytics and automated testing to detect anomalies or risks.
• Prepare clear and concise audit reports, presenting findings and action plans to management.
• Support external audits and regulatory examinations as needed.

Requirements

• At least Bachelor’s degree in Information Systems, Computer Science, Accounting, or related field.
• 3–5 years of experience in IT auditing, cybersecurity, or risk management.
• Familiarity with audit standards (IIA, ISACA) and frameworks such as ISO 27001, NIST, COBIT, or ITIL.
• Working knowledge of ERP systems, databases, network security, and cloud platforms (AWS, Azure, GCP).
• Strong analytical and problem-solving skills.
• Excellent communication and report-writing abilities.
• Certifications such as CISA, CISM, CISSP, or CIA are highly preferred.