IT Audit Director

  • Attractive packages + Bonus
  • Hong Kong
  • CDI, Plein-temps
  • Robert Walters Hong Kong
  • 08 nov. 17 2017-11-08

The Internal Audit Department is a newly established department and is currently recruiting an experienced IT internal audit profession; The position reports to the Chief Auditor and will be responsible for planning and executing annual risk-based audit plan relating to all aspects of the company and its subsidiaries' information technology processes, applications and infrastructure and providing control advisory to the business

Responsibilities:

  • Develop a comprehensive risk-based audit plan based on the result of the annual risk assessment process
  • Execute and monitor the approved annual risk based audit plan
  • Plan and lead integrated financial, operational, and information systems reviews, including determine scope, objectives, procedures and test steps to assess the adequacy and effectiveness of internal control activities and compliance with various requirements
  • Perform testing and evaluation of internal control activities of the brokerage and trading activities
  • Appraise adequacy of the corrective action taken to improve deficient conditions
  • Modify the annual audit plan as necessary to focus resources on the most significant risk areas
  • Report the state of the control environment and highlight forward looking indicators of potential risks to the Business Unit Management and relevant committees
  • Share knowledge, skills, experience, and best practices with team members and key stakeholders
  • Adopt an anticipatory approach to risk assessment through on-going dialogue with key stakeholders and understand the industry and regulatory trends to ensure the audit plan focuses on key risks in order to provide quality input to Business Unit Management and relevant committees on emerging risks
  • Proactively promote wide understanding within the organisation about risks and control to enhance the risk culture
  • Perform other job-related duties and special projects as required
  • Participate in strategic and operational governance processes of the business organisation while promoting IT solutions and services
  • Build and maintain strong relationships within the business; Become a trusted advisor and be seen as a core part of the business

Requirements:

  • 12+ years of work experience, preferably international financial firm audit experiences
  • Working technical knowledge in network and PC operating systems, hardware, protocols and standards
  • Professional license - CISA, CISM, CGEIT, COBIT, CRISC, CSX-P, or ISC
  • With a good understanding of local regulatory requirements
  • Strong written, oral and interpersonal communication skills
  • Ability to present ideas in business-friendly and user-friendly language
  • Ability to foster a participative and cooperative work environment
  • Ability to work independently, with minimal direction; Team player
  • Highly motivated and attentive to details
  • Willingness and capacity to acquire new knowledge and keep up to date with developments / market trends within area of expertise
  • Effectively prioritise and execute tasks in a high-pressure environment
  • Extensive experience working in a team-oriented, collaborative environment
  • Experience in data analytic is a plus
  • Language skills: English, Cantonese and Mandarin
  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • Certified in the Governance of Enterprise IT (CGEIT)
  • Control Objectives for Information and Related Technology (COBIT) 5
  • Certified in Risk and Information Systems Control (CRISC)
  • Cybersecurity Nexus Practitioner (CSX-P)