Information Technology (IT) Auditor has responsibility to perform or lead the audit team on assigned audit projects. The person in charge of IT audit must eligible to analyze business processes or activities within business functions to identify, assess and evaluate IT-related business risk (IT risk) to define audit objectives, scope and develop risk-based Audit Work Program (AWP). IT audit must evaluate the efficiency and effectiveness of IT-related internal controls and provide recommendations to the management in order to identify and improve the IT control weaknesses and mitigate the related IT risk. It is also to assist management in evaluating internal control and consulting activity designed to add value and improve an organization’s operations.
This position must possess the qualification, experience and knowledge required to evaluate the adequacy and effectiveness of the company’s system of governance, issue recommendations, in particular as to deficiencies with regard to the internal control system and the compliance with the corporate rules, and verify the compliance with decisions taken as a consequence thereof. Detailed requirements are outlined in the Group Audit Policy.