IT Auditor

La Garanti BBVA Romania am creat un climat care inspiră colaborarea și comunicarea. Am  construit astfel o echipă unită și energică, care pune întotdeauna clientul pe primul loc. Susținem aspirațiile colegilor noștri și îi încurajăm să se perfecționeze continuu și să își urmeze pasiunile. Ca echipă, ne preocupă creșterea eficienței operaționale și îmbunătățirea constantă a serviciilor oferite clienților.

•2 years of IT Auditing or IT Security experience or a degree in Cyber Security. Additional qualifications such as CISA, CISM, CISSP would be advantageous;
•Good English speaking and writing is necessary;
•Good process analysis and report writing skills;
•Effective time management, planning and organisational skills;
•Ability to build effective relationships within the group;
•Problem solving skills - thinks through actions and considers impacts on costs and benefits before making a recommendation;
•Communication - the ability to listen, express and communicate clear information;
•Results focused - getting the job done in an efficient way through effective time;
•Open for a continuing learning process and attending the training courses offered by the organization

•Conduct independent reviews of IT applications, infrastructure and systems, as well as information security processes across the group entities in the scope of the audit team;
•Main activities under IT audit scope are: application and infrastructure security configuration, information security organisation, standards and risk management, penetration testing, application and network architecture, IT management & governance, service level management, project development and delivery, IT operations, business continuity, disaster recovery;
•Perform the IT audits in accordance with agreed audit programs, conduct audit tests and document the work performed;
•Attend the videoconference meetings with the group responsible of technology risk related to ongoing IT audit engagements;
•Deliver group IT audit reports in line with agreed plan;
•Follow-up the implementation of IT audit recommendations (including those issued by other parties);
•Upload the working papers related to work performed and follow up results in internal audit application used by the group;
•Deliver audit reports that are accurate, relevant and provide assurance to the recipient;
•Review policy and procedure changes related to IT and technology risk and issue opinions;
•Run queries within system database necessary for preparation of audit missions;
•Provide support during the audits performed by other parties (group, external auditor, etc).