Senior Auditor (Information Technology) Egypt At Mashreq Bank
Job PurposeDeveloping and maintaining the IT audit universe at the country level/other branches under the oversight of the Country Head of Audit.
Conduct standard audits or lead audit in performance of IT audits and reviews of systems, applications and IT processes and support with other operational and financial audits. Develop, build & implement tools to analyze data to improve audit efficiency and effectiveness, (including for risk assessments). Ultimately be a source for analytics that business units adopt to provide business insights or for continuous auditing.
Key Result Areas
Develop and Maintain a IT audit universe with the use of the standard risk assessment methodology for prioritizing the information assets.
Prepare an Annual Audit Plan based on risk profile of the information assets.
Manage and ensure that audits are conducted as per the agreed scope using standard methodology to assess the effectiveness of controls in accordance with the Bank's policies and procedures.
Identify weaknesses/opportunities for improvement and develop action plans with target dates for all the audit findings and present them for discussions for common understanding on the issues, and ensure timely follow-up till closure.
Develop, build & implement tools to analyze data to improve audit efficiency and effectiveness, (including for risk assessments). Ultimately be a source for analytics that other auditors adopt to provide business insights or for continuous auditing.
Take part in major IT initiatives and projects as well testing the controls for systems during development and after implementation.
Participating in Country Audits technology/Group wide audits as well as other audit themes as directed.
Providing regular updates to the Country Head of Audit - Egypt for the preparation of detailed annual audit plan based on risk assessment and evaluation of various processes/activities within the Country.
Fully complying with all systems and procedures, review criteria for selection of review parameters as established and modified from time to time, internal processes, turnaround time in carrying out the job in a professional and efficient manner ensuring that all activities are carried out in accordance with the rules and guidelines set out in Internal Audit Charter / Manual and in such manner that is consistent with International Standards for the Professional Practice of Internal Auditing.
Knowledge, Skills & ExperienceGraduate from a prestigious and/or well recognized computer science/engineering university preferably with Business or accounting overview
CISA, CISSP Certification (or other relevant ISACA certifications). Other professional certification e.g. CIA, CFA, etc are additional advantages
Technical Experience in Information Technology risk based auditing and experience with auditing areas such as cloud computing/ operations, DevOps pipeline, Agile methodology, Information Security etc.
7-10 years’ of post qualification experience, preferably in Big 4 Audit firms or Banking industry in Senior Auditor position of which 5-7 years’ experience in IT Audit role
Professional certification or on the job experience in data analytic, SQL, ideas and ACL.
Excellent command over written and spoken Arabic and English.
Strong analytical, communication and presentation skills including project management skills.
Experience of providing project assurance reviews for transformational changes.