Technology Auditor

As part of an IT Audit modernization, the Audit team has implemented several process changes to improve the experience for the operation, focusing on a risk-based auditing approach. This position calls for an innovative person who will identify, embrace, and implement new approaches, while persistently asking the question: what is it that we should audit? Career development opportunities could include roles within the core IT organization or within the Internal Audit function. 

• Develop a comprehensive understanding of the organization’s business processes, goals, and strategy in order to provide sound analysis and interpretation of IT risks and technology challenges
• Be responsible for the examination and analysis of technology and business risks by performing IT audit work, developing audit plans, scope, procedures, and preparing audit reports
• Research industry trends applicable to the environment including automotive, financial, mobility, technology, cyber, and audits
• Assist in developing a risk-based IT audit plan; assist in assessing areas of risk requiring IT audit procedures; and execute IT audit procedures based on risk and impact to the business, across different applications, technologies and business processes, and in collaboration with internal and external partners and monitor completion of planned actions
• Support departmental transformation initiatives with pilots of new processes and audit responses
• Proactively identify areas of business initiatives and changes in the business environment and assess their impact on the business and the control environment
• Partner with global business audit on joint business and IT audits
• Interact regularly with Security Operations Center (SOC), Internal Controls, Legal and Information Security Policy teams
• Travels may be required as part of this role
• Strong foundational knowledge and practical experience in Risk-based IT Audits, Cybersecurity or Information Security.
• Comprehensive understanding of Information Technology domains
• Highly motivated to build a long-term career in Internal Audit.
• Comfortable working in a dynamic environment with minimal direction
• Excellent verbal and written communication skills with the ability to communicate effectively with all levels of leadership
• Possesses excellent interpersonal skills, demonstrating professionalism in all actions

Education Qualification: Bachelor’s degree in Computer Science or Information Technology or Masters of Computer Applications

Number of Years of Experience: Applicants should have a minimum of two years of hands-on experience in any of the Information Security Domains (Information Security Audits, Cybersecurity, Internal Control etc.) 

Professional certifications: Must have completed at least one professional Information Security certification - such as ISO 27001 Lead Auditor or Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP).