IT Internal Audit

Key Responsibilities:

• Design and implement of ISO 27001, 27701, and 20K, also knowledgeable of ITIL framework
• Performing the full audit cycle including risk management and control management over IT; effectiveness and compliance with all applicable directives and regulations.
• Obtaining, analyzing, and evaluating reliable documentation, reports, data, and flow charts.
• Engage in continuous knowledge development regarding rules, regulations, best practices, tools, techniques, and performance standards.
• Presents summarized findings concerning audit results and trends for internal groups.
• Identify audit results to determine methods for increasing compliant metrics and decreasing non-compliant metrics.
• Keeps up to date on audit procedures and regulations by attending conferences, workshops, and continuing education seminars.
• Timely execution of risk-based internal audits in accordance with the annual audit plan, as well as assisting with other audit matters and projects.
• Performing risk assessments on key business activities and using this information to guide what to cover in audits.
• Identifies process gaps & assists in new version process updates.
• Revise procedures, reports, etc. periodically to identify hidden risks or non-conformity issues
• Assess the business’s future ventures to identify possible compliance risks on IT & Security Controls and Obligations
• Assess the IT Risk inside and outside RCC infrastructure that include: Applications, Systems, Network, Connectivity, business continuity, and data security
• Collaborate with corporate counsels and HR departments to monitor enforcement of standards and regulations
• Review the work of colleagues when necessary to identify compliance issues and provide advice or training
• Keep abreast of regulatory developments within or outside of the company as well as evolving best practices in compliance control
• Prepare reports for senior management and external regulatory bodies as appropriate