Assistant Manager (IT Audit)

Leading IT & Telecom solutions companyJob DescriptionCandidates with less experience will be considered as Senior IT Auditor.Responsibilities

Conduct IT audit / technical consultancy assignments (including general IT controls, application reviews, technical and security assessments).
Participate in financial and operational audits like revenue assurance and data governance, as well as take up ad-hoc projects as assigned (e.g., fraud and forensic investigations).
Develop and maintain Computer Assisted Auditing Techniques (CAATs) Programs.
Identify control weaknesses, analyze evidential information and suggest practical recommendations for improvement and mitigating potential risks.
Undertake cyber and system security health checks (e.g., penetration test and vulnerability assessment) and remediation.
Liaise with clients to formulate action plans and assist in drafting and presenting audit reports to senior management.
Perform follow-up review for proper implementation of audit recommendations.
Carry out in-house IT administration tasks (e.g. maintain web-based continuous auditing / risk assessment applications and support Audit Management System configurations).
30 - 40% overseas travels (mostly in Europe) to work with colleagues in various business sectors and multi-cultural environments

Job Requirements

Degree holder in Computer Science / Engineering / Information Systems and related fields.
Pass professional examinations (e.g., CISA, CISSP or equivalent) are preferred.
3-5 years’ experience of IT audit, computer programming, consultancy or project management; exposure in the telecommunications, retails and ecommerce industry will be a definite advantage.
Sound knowledge of IT infrastructure / operating systems (e.g., Firewall, Unix and Windows Server), database query languages (e.g., MySQL and Oracle), web application programming languages (e.g., JavaScript and PHP) and IT risk standards (e.g., COBIT).
Hands-on experience on using network / application security scanning tools (e.g., Burp, Nessus and Nmap).
Strong analytical and problem solving skills.
Independent with analytical mind and risk control sense.
A good team player with strong analytical and problem solving skills. Good command of English, while Putonghua or additional language skills will be a plus.