mociber

🛡️ Job Title: Senior IT Auditor/ IT Auditor (Secondment – 2 to 3 Months) Extendable Location: Riyadh, Saudi Arabia (Ready to Travel from India) Engagement Type: Short-Term Contract / Secondment Industry: Insurance Start Date: Immediate / Upon visa clearance Freelancer : Can also apply 🎯 Role Overview We are hiring a highly experienced IT Auditor (10+ years) for a short-term secondment in Riyadh. The selected candidate will lead a comprehensive audit of IT applications, ERP systems, and infrastructure controls for a large insurance company. This role demands deep technical expertise, regulatory alignment, and strong documentation skills across all audit phases. 🔍 Key Responsibilities 🔧 IT Applications & ERP Audit Audit core insurance applications, ERP systems (SAP, Oracle, or equivalent), and middleware integrations, clouds Evaluate application-level controls: input validation, data processing, output accuracy, and exception handling Review user access provisioning, role-based permissions, and segregation of duties (SoD) Assess system configurations, patch management, and change control procedures Validate data integrity across modules (Finance, Claims, Underwriting, HR, etc.) 📋 Pre-Audit Preparation Develop audit scope, objectives, and methodology aligned with ISO 31000, SAMA ITGC, ISO 27001/270002, ISO 20000-1ITIL, COBIT, and Insurance Authority (IA), Council of Health Insurance (CHI) standards Conduct stakeholder interviews and walkthroughs to understand system architecture and business processes Review existing documentation: SOPs, policies, risk registers, and prior audit reports Prepare audit checklists and control matrices tailored to the insurance domain 🔍 Audit Execution Perform fieldwork, including control testing, data sampling, and system walkthroughs Identify control gaps, process inefficiencies, and compliance deviations Conduct RCA (Root Cause Analysis) for identified issues, linking technical failures to business impact Document findings with evidence, screenshots, and control references 🧾 Post-Audit Reporting Draft detailed audit reports with executive summaries, risk ratings, and actionable recommendations Prepare remediation tracking sheets and follow-up plans Present findings to senior management and IT leadership in clear, non-technical language Support implementation of corrective actions and validate closure of audit points 📜 Required Qualifications Minimum 10 years of experience in IT auditing, ERP systems, and application controls Proven experience auditing large-scale insurance or financial services environments Strong understanding of regulatory frameworks: SAMA, ISO 27001, COBIT, SOX, Insurance Authority, Council of Health Insurance, NCA-ECC Certifications: CISA (Preferably) CIA, CRISC, CISM, ISO 27001 Lead Auditor, ISO 20000-1 ERP certifications (preferred) Bachelor’s or Master’s in Information Systems or Computer Science Excellent documentation and reporting skills—able to produce audit-ready deliverables Fluent in English; Arabic is a plus 🧾 Additional Requirements Valid passport with a minimum of 6 months' validity Willing to relocate to Riyadh for the duration of the engagement Prior experience in GCC or the insurance sector preferred Available for immediate onboarding 💼 Hiring Details Contract Duration 2 to 3 months (extendable based on scope) Location Riyadh, Saudi Arabia Compensation Competitive (based on experience and certifications) Visa & Travel Sponsored by client or Mociber (to be finalized) Reporting To Director of Audit (IT/CS) Work Mode On-site Application Deadline Rolling basis – priority for immediate availability 📣 How to Apply Send the following to mohsin@mociber.com Updated CV with relevant audit and ERP experience in Word format Copies of certifications (CISA, etc.) Passport scan (validity page) Availability and expected compensation