About the Company: Our client is a leading financial services and investment group with a strong presence in the capital markets ecosystem. The organization delivers integrated wealth and investment solutions spanning investment banking, asset and portfolio management, securities trading, brokerage, and strategic financial advisory services to institutional and high-net-worth clients.
The Company is seeking a Head, IT Audit who will be responsible for leading the IT audit function. The role holder will ensure the effectiveness of IT governance, cybersecurity, system controls, data integrity, and regulatory compliance in line with financial services and fintech regulatory requirements.
The role plays a critical part in strengthening internal controls and ensuring compliance with regulatory and global audit standards.
Key Responsibilities:
Audit Review of Database Management Systems, Enterprise Network security and Device configuration, Antivirus, Systems Patches and Log Management.
Audit Review of Software Development Life Cycle, Project Management Implementation and Change Management Procedures.
Develop and execute a risk-based IT audit strategy aligned with the companyâs FinTech operating model and regulatory landscape.
Audit Review of Data Encryption Processes, Key Encryption/ Key Management Lifecycle, and Operating Systems, physical and logical security of card holder environment.
Audit Review of Active Directory, Operating Systems, Data Bases, Systemsâ Logs, Soc, Transaction monitoring and backup & tape management.
Ensure IT audit coverage aligns with financial services regulations, including data protection, cybersecurity, and technology risk requirements.
Assess systems and general IT controls and provide practical and Value-added remediation plans.
Prepare audit reports that summarize the most significant control weaknesses and resulting impact to the organization.
Provide strategic advisory support on emerging technology risks, digital transformation initiatives, and new product launches.
Participate in multiple and simultaneous risk assessment.
Evaluate general IT controls (GITCs) including access management, change management, system development life cycle (SDLC), and IT operations.
Contribute to internal departmental initiatives such as training, departmental development initiatives and other internal projects as requested.
Effectively discuss audit issues and develop business focused controls recommendations to strengthen control lapses and weaknesses-based audit while maintaining departmental quality standards. Function as part of a team or work independently when requires.
Requirements
Key Requirements:
Bachelorâs degree in Information Technology, Computer Science, Computer Engineering, or related field. Class of degree â First Class or Second Class Upper (2.1) is a must have.
6+ years of experience in IT Auditing, Information Systems Audit, IT Risk Management, Cybersecurity Audit or a similar role.
Certified Information System Auditor (CISA), certified Information Security Manager (CISM), or related professional certifications would be an added advantage.
Understanding of the key technology and general controls around enterprise, applications and information systems.
Strong experience auditing cloud environments, digital platforms, cybersecurity, and third-party vendors.
Deep understanding of core business systems, digital payments, APIs, cloud infrastructure, and cybersecurity risks.
Strong knowledge of IT control frameworks (e.g., COBIT, ISO 27001, NIST, NDPA).
Expertise in cybersecurity principles and risk management.
Strong analytical and critical thinking skills.
Excellent stakeholder management, communication, and presentation skills.
High integrity, independence, and sound professional judgment.
Ability to manage multiple audits simultaneously.
Apply Now
Activate JobCopilot
Your email job alert is now active!