IT Auditor

Angajator: Garanti Bank
Domeniu:
  • IT Software
  • Management - Consultanta
  • Tip job: full-time
    Nivel job: 1 - 5 ani experienta
    Orase:
  • BUCURESTI
  • Actualizat la: 17.11.2018
    Scurta descriere a companiei

    Cerinte

    •2 years of IT Auditing or IT Security experience or a degree in Cyber Security. Additional qualifications such as CISA, CISM, CISSP would be advantageous;
    •Good English speaking and writing is necessary;
    •Good process analysis and report writing skills;
    •Effective time management, planning and organisational skills;
    •Ability to build effective relationships within the group;
    •Problem solving skills - thinks through actions and considers impacts on costs and benefits before making a recommendation;
    •Communication - the ability to listen, express and communicate clear information;
    •Results focused - getting the job done in an efficient way through effective time;
    •Open for a continuing learning process and attending the training courses offered by the organization

    Responsabilitati

    •Conduct independent reviews of IT applications, infrastructure and systems, as well as information security processes across the group entities in the scope of the audit team;
    •Main activities under IT audit scope are: application and infrastructure security configuration, information security organisation, standards and risk management, penetration testing, application and network architecture, IT management & governance, service level management, project development and delivery, IT operations, business continuity, disaster recovery;
    •Perform the IT audits in accordance with agreed audit programs, conduct audit tests and document the work performed;
    •Attend the videoconference meetings with the group responsible of technology risk related to ongoing IT audit engagements;
    •Deliver group IT audit reports in line with agreed plan;
    •Follow-up the implementation of IT audit recommendations (including those issued by other parties);
    •Upload the working papers related to work performed and follow up results in internal audit application used by the group;
    •Deliver audit reports that are accurate, relevant and provide assurance to the recipient;
    •Review policy and procedure changes related to IT and technology risk and issue opinions;
    •Run queries within system database necessary for preparation of audit missions;
    •Provide support during the audits performed by other parties (group, external auditor, etc).