Lead - Information Security Audit

Lead IS Audit

Job description

The primary objective of Technology audits includes:

- Ensure IT systems and processes are compliant with internal standard/policies and regulatory requirements.

- Evaluate security and resiliency of IT systems and processes in place.

- Determine risks to a company's information assets, and help identify methods to minimize those risks

- Understand the IS environment to determine the size and complexity of the systems and the extent of dependence on information systems by the bank

- Undertake reviews of internal control procedures and security for systems under development and/or enhancements to current systems.

- Perform Application controls, Network Devices, Security devices reviews for simple to complex information systems in a risk-based manner.

- Perform information control reviews to include system development standards, operating procedures, system security, programming controls, communication controls, backup and disaster recovery, and system maintenance.

- Communicate the audit finding to respective business heads/ senior management and Audit Committee

- Follows-up on audit findings to ensure that management has taken corrective action(s)

- Identify opportunities to add value beyond defined the scope specifically in cyber security and emerging technology like cloud, devops.