If you are someone with strong IT audit and compliance background and passionate about technology, looking for opportunities to work with a team of practitioners and leading industry experts, we welcome you to join the Governance Group.
As a Senior Manager / Manager, Audit and Compliance, you will join a team of audit professionals responsible for the whole-of-government (WOG) IT audit and compliance management, covering over 100 government agencies. What to Expect :
Develop and customise audit programmes / security audit checklists to assess the design and operating effectiveness of internal controls in mitigating IT risks.
Plan, develop and conduct annual policy compliance and process audits, technical audits on critical systems and infrastructure.
Manage agency interactions, including briefings, conduct of audit fieldwork, management responses and follow-up actions to ensure on-time and on-target execution of audit plans.
Review audit findings and assess agencies’ and Whole-of-Government overall state of ICT governance and risks.
Formulate mitigation plans to improve state of overall ICT governance.
Work with multiple agencies at the working and management levels to assess current situation and identify recommendations to address the gaps.
Monitor and validate audit findings to ensure control remediation is effective and root causes have been addressed.
Plan, source and actively manage outsourced augmentation of internal capability, to deliver the committed deliverables.
How to Succeed :
Bachelor in Computer Science, Electrical / Computer Engineering, Information Technology or related discipline. Those without a degree but have relevant experience or expertise may also apply.
Possess professional certifications such as Certified Information Systems Auditor (CISA) and cloud security certification.
Minimum 8 years ICT experience, preferably with at least 4 years in ICT audit and / or compliance management. Audit experience and knowledge related to cyber security, cloud application development and commercial public cloud platforms would be a plus.
Prior experience leading audits and conducting audit fieldwork and has good working knowledge and understanding of regulatory compliance, governance and internal controls.
Strong understanding of technology, IT management processes, technology risks and internal controls.
Prior experience in application development and cloud application development preferred.
Able to deliver quality and thorough work, with eye for details.
Good written and verbal communication and presentation skills.