IT Internal Auditor

La Garanti BBVA Romania am creat un climat care inspiră colaborarea și comunicarea. Am  construit astfel o echipă unită și energică, care pune întotdeauna clientul pe primul loc. Susținem aspirațiile colegilor noștri și îi încurajăm să se perfecționeze continuu și să își urmeze pasiunile. Ca echipă, ne preocupă creșterea eficienței operaționale și îmbunătățirea constantă a serviciilor oferite clienților.

-Preferably 2 years experience in IT Auditing or in related activities such as IT Security / BCP / DR / SLM;
-Additional qualifications such as CISA, CISM, CISSP would be advantageous;
-Good English speaking and writing is necessary;
-Good process analysis and report writing skills;
-Effective time management, planning and organisational skills;
-Ability to build effective relationships within thе group;
-Problem solving skills - thinks about solving problem root cause through actions and considers impacts on costs and benefits when making a recommendation;
-Communication - thе ability to listen, express and communicate clear information;
-Focused on results - getting thе job done in an efficient way through effective time;
-Open for a continuing learning process and attending thе training courses offered by thе organization.

-Performs the audit engagements in Agile way of working methodology (we provide support for learning the Agile methodology);
-While performing the audits, assess the IT applications, infrastructure and systems, as well as information security processes across thе group еntitiеs in thе scope of the audit team;
-Main аctivitiеs undеr IT аudit scope are: application and infrastructure security configuration, information security organisation, standards and risk management, penetration testing, application and network architecture, IT management & governance, service level management, project development and delivery, IT operations, business continuity, disaster recovery;
-Performs the IT audits in accordance with agreed audit programs, conduct audit tests and document the work performed;
-Attends periodic videoconference meetings with the group responsible of technology risk related to ongoing IT audit engagements;
-Delivers IT audit reports in line with agreed planning and schedule;
-Follows-up the implementation of IT audit recommendations (including those issued by other parties);
-Uploads the working papers related to work performed and follow up results in internal audit application used by the group;
-Delivers audit reports that are accurate, relevant and provide assurance to the recipient;
-Reviews policy and procedure changes related to IT and technology risk and issue opinions;
-Runs queries within system database necessary for preparation of audit missions;
-Provides support during the audits performed by other parties (group, external auditor, supervisory authority, etc).