Our client a fast-paced FinTech Enterprise servicing consumers and Entities (Govt/Private) in the Financial Sector in the UAE is looking to hire a Senior Officer - Internal Audit (IT/IS)
Responsible for executing and completing internal audit plan of the company and support co-sourced internal audit partners and external auditors for performing their audit activities.
The role is responsible performing audits of both technical and non-technical nature and ensuring the follow up and implementation of assigned action plans to close the observations. The role includes the preparation of various audit documentation including audit program, audit reports and presentations for Senior Management review.
Main Duties and Responsibilities
? Assist Manager Internal Audit (MIA) in preparation of Internal Audit Plan for the company through identification of risk areas where the business should focus on implementation and enhancement of controls.
? Conduct regular IT / IS audit reviews in accordance with internal audit plan and audit testing of specified areas and identify reportable issues and dimension of risks to be reported to the management.
? Perform internal audit and risk management of the various processes, technologies, and systems of the company with a view to identify weaknesses and recommend improvement to the processes, controls, systems, procedures, etc.
? Conduct IT / IS audit reviews to cover (not limited to) internal IT policies, standards, procedures, processes and access/authority matrices.
? Responsible for proactively maintaining and updation of the internal audit plan document with the updated status of audits along with man days consumption.
? Maintain and update Internal Audit observations in the Risk Register and record actions in the Action Register.
? Conduct IT security audits of systems, networks and databases and identify weaknesses to be addressed.
? Coordinate the audit scope, objective and timelines with internal departments and sections at the company.
? Manage the execution of audit assignments with departments and sections to ensure audit deadlines are adhered to and effective completion of audit plan for the year.
? Evaluate information system general computing controls and provide recommendations for implementations
? Perform testing of controls and compliance assessment against known national and international standards and best practices.
? Provide the company management with guidance on IT risk management matters, particularly on application, database and infrastructure security.
? Assist MIA in conducting audit for the source of company’s performance against KPIs set by the Management Committee to provide assurance in KPI ratings.
? Identify ways to efficiently utilize tools to analyze data to improve audit efficiency and effectiveness, (including for risk assessments).
? Prepare and report audit results to executives and assist MIA in preparation of reports to Audit Committee.
? Document the observations to bring-out business information security and technology risks.
? Advise on the mitigating strategies and controls which helps to mitigate the risks.
? Effectively communicate timelines, scope of audit, and resource allocation with the different business units and sections.
? Prepare audit program / checklists and risk control matrix for the audit to conduct effective reviews and bring out standardization.
? Follow-up with departments and sections on the observations and to monitor the closure of identified risks.
? Keep abreast of industry leading standards and best practices (ITIL, NIST, COBIT, NESA, etc) to ensure that the audit reviews are performed against relevant standards and recommendations are in-line with the best practices applicable to the business.
? Validate data provided by the departments and section for their accuracy.
Experience and Knowledge
1. Minimum experience of 5 years in auditing
2. Proven track record in technical and non-technical auditing
3. Knowledge in credit bureau, information services or technology-driven industries
4. Knowledge of technological applications in business environments
Education and Skills
1. Bachelor’s degree relevant to performing role described in job description
2. Industry certification in auditing
3. Proficient in English
4. Proficient in Arabic Preferred
5. Excellent communication and presentation skills for all levels
6. Influencing and negotiation skills