Senior IT Auditor
05 August 2019
Location: BDO Malta
Job title: IT Auditor
Contact: Marceline Galea
BDO Malta, the only firm licenced to conduct both MDIA system audits and act as a VFA Agent is looking for a Senior IT Auditor.
The ideal candidate is a qualified IT Graduate with a keen interest in Information Security and/ or Tech Compliance. A CISA qualification would be considered an asset.
BDO Malta rewards ambition and hard work with a clear career-path leading to a managerial role, personal development planning and a nurturing environment.
At BDO, you will also gain exposure to an international environment leading to very good career progression prospects and continuing professional development exposure. This is a full-time position within a team of like-minded professionals, already engaged to provide services to companies with operations around the globe. From mid-size companies to public listed entities, BDO Malta serves clients in virtually all industries.
We utilise a vast network of resources, drawing upon diverse experiences to ensure our clients’ meet increasingly challenging regulatory and business requirements.
The Employee will be mainly responsible to:
- Provide the Firm and the IT team with guidance on IT risk management matters, particularly on application and infrastructure security;
- Responsible for developing and maintaining the IT Risk Assessment under the oversight of the Partners; including identifying areas where business units should consider additional investment and areas internal audit should focus;
- Conduct audits or lead audit teams in performance of IT audits and reviews of systems, applications and IT processes;
- Prepare and report results to the Partners;
- Perform pre and post- implementation reviews of system implementations or enhancements;
- IT security audits (e.g. network, operating system and data centre), including evaluating if security vulnerabilities are properly identified and mitigated. Coordinate the scope and performance of these reviews with business units and external security experts;
- Evaluate information general computing controls and provide value added feedback. Test compliance with those controls;
- Perform various other reviews of IT management policies and procedures such as change management, business continuity planning/ disaster recovery and information security to ensure that controls surrounding these processes are adequate;
- Develop, build & implement tools to analyse data to improve audit efficiency and effectiveness, (including for risk assessments);
- Ultimately be a source for analytics that the Firm adopts for continuous auditing;
- Conduct audits or lead audit teams in operational / financial audits.
The ideal candidate should:
- Be in possession of a CISA, CISSP, CISM or equivalent qualification;
- Preferably have experience in IT Audit or IT/ Information Security Audit or suitable experience in Information Security role;
- Have excellent analytical and problem-solving skills;
- Have knowledge of IT development testing practices and techniques;
- Be able to multi-task effectively and manage multiple priorities.