- Bachelor's degree in Information Systems and technologies
- Experience of minimum 3 years on IT audit in Banking industry, consulting firm (Big 4) or relevant IT experience
- Business proficiency in English (written and verbal)
- IT Technical acumen is required (IT internal control framework i.e. ITIL, COBIT framework, information security principle practice and framework etc)
- CISA, CRISC, CISSP certification is a plus
- Strong team player
- Good communication and interpersonal skill
- Good critical and analytical thinking
Provides assurance on the design, existence and effectiveness of controls over IT systems, policies, processes and/or products by:
- Execute IT audit plan across multiple discipline, including:
- IT Governance and alignment to business objective
- System Development Life Cycle (SDLC)
- IT Security, infrastructure and networks
- Emerging and disruptive technologies (i.e. Robotics Process, Automation, Artificial Intelligent etc)
- Data and information governance
- etc
- Gain comprehensive understanding of the Business Unit's business activities
- Identify key and emerging risks preventing the Business Unit to achieve strategic objectives
- Develop an appropriate audit scope and testing strategy that will provide adequate coverage of the key risks
- Evaluate and validate the effectiveness of internal control environment for IT Systems (IT general control and IT application control)
- Communicate the audit issue to the key management, identify the root cause and develop value added recommendation for the identified risk and threats
- Follow up on the issues and action to ensure the control has been in place and the risk has been mitigated
OCBC NISP