ControlCase - Security Consultant

Job Summary :

Performs moderately complex IT & Operational audits and tests both the design and effectiveness of controls. The IT Auditor identifies the need for recommendations for improvements in internal controls considering the costs and benefits of potential recommendations.

Job Responsibilities :

- Provides support in the risk assessment process for entities under audit.

- Assists in the planning and organizing of audit assignments and implementing audit programs. Performs a variety of compliance and operational audits through the application of established policies and procedures.

- Assists or conducts, with assistance, kickoff conference with appropriate personnel to discuss the purpose and procedures of the audit.

- Utilizes audit techniques to document and determine the effectiveness of internal controls (i.e. interviews, observing, flow charting, compliance and substantive testing).

- Based on changes or new information arising in the audit process, works with or assists project management to adjust audit programs to address these changes.

- Identifies and documents audit findings, and effectively communicates, as identified, to audit team.

- Prepares draft audit findings for formal report to immediate supervisor. Prepares report, from templates, for compliance reviews.

- Assists or conducts, with assistance, closing conference with appropriate personnel to discuss the findings and recommendations of the audit.

- May oversee Auditors on a project basis and reviews working papers and files for accuracy and completeness, for compliance audits.

- Sets and adheres to detailed project timelines including concrete project milestones. Communicates deviations from timelines to management when identified.

Basic Qualifications & Interests :

- Bachelor's Degree in Accounting, Finance, MIS or Computer Science and at least 2 (two) years of relevant experience in IT Audit (IT, financial, operational or compliance).

- Knowledge of IT and audit principles and awareness of ISACA or IIA Standards for the Professional Practice of Internal Auditing.

- Knowledge of internal controls and identifying the need for recommendations.

- Knowledge of internal control concepts (COSO and/or COBIT)

- Knowledge of statistical sampling procedures as they relate to conducting of audits.

- Willing to travel 50% or more of the time for business purposes across AsiaPac and Middle Eastern countries.

Preferred Qualifications & Interest :

- CISA, CISM or CISSP

- PCI QSA

- IT Audit experience in the financial/payment industry