We are looking for an IT Auditor to assess the reliability, effectiveness, and compliance of information systems, IT processes, and internal IT controls.

The role focuses on reviewing how IT processes are designed, applied, documented, and controlled across the organization. The selected candidate will conduct IT audit assignments, test controls, identify process gaps, assess risks, and provide practical recommendations to improve IT governance and operational control.

Main Responsibilities

• Conduct IT audit assignments covering information systems, applications, infrastructure, and IT operational processes.
• Review and test IT general controls, including user access management, change management, incident management, backup and recovery, system operations, and segregation of duties.
• Assess the design and operating effectiveness of IT controls based on audit objectives and identified risks.
• Review IT procedures, workflows, evidence, logs, approvals, and control documentation.
• Identify control weaknesses, process gaps, compliance deviations, and operational risks.
• Prepare clear audit working papers, testing results, observations, and supporting evidence.
• Draft audit findings with risk impact, root cause, and practical recommendations.
• Follow up on corrective action plans and ensure proper remediation by the concerned teams.
• Collaborate with IT, internal audit, risk, compliance, and business stakeholders.
• Contribute to improving audit methodology, documentation quality, reporting standards, and follow-up processes.

Required Profile

• Degree in Computer Science, Information Systems, Audit, Risk Management, Internal Control, or a related field.
• Experience in IT audit, information systems audit, internal audit, IT controls, IT risk, or IT governance.
• Good understanding of IT environments, applications, infrastructure, databases, and IT operational processes.
• Knowledge of IT control areas such as:
  • User access and authorization management
  • Change and release management
  • Incident and problem management
  • Backup, recovery, and system availability
  • Segregation of duties
  • IT operations and process controls
• Ability to test controls, analyze evidence, assess risk, and document conclusions clearly.
• Strong analytical thinking, attention to detail, and structured problem-solving skills.
• Good report writing, communication, and stakeholder management skills.
• Ability to interact with both technical and non-technical teams.

Nice to Have

• Knowledge of audit and governance frameworks such as COBIT, ITIL, COSO, or similar.
• Exposure to ERP systems, telecom systems, banking systems, or large-scale IT environments.
• Certification such as CISA, ITIL, or equivalent is an advantage.
• Previous experience in internal audit, consulting, Big Four, telecom, banking, or regulated environments.

Profile Clarification

This position is focused on information systems audit, IT internal controls, IT governance, and risk-based control testing.

The ideal candidate is not expected to be a security engineer or a technical cybersecurity specialist. The core need is an IT audit profile capable of understanding IT processes, testing controls, identifying weaknesses, and communicating audit findings in a clear and structured way.