Job
Description
As part of our Technology Risk team, you will be part of the team performing IT Audits (IT General Controls and IT Application Control testing) conducted for various clients across the MENA region. Working with Technology Risk team, you will also perform/provide insights to IT Risk assessment, IT Governance, ERP reviews, Application control reviews, Cybersecurity reviews and conduct maturity assessment on the client s current IT posture. The client base spans across various sectors and includes collaboration with other teams within EY. We re looking for professionals with expertise in IT Audit to join our Technology Risk team at Senior rank. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of our service offering. Your key responsibilities Responsible for working with multiple client engagements and teams at a Senior level within the MENA region. You can expect to work with high level client personnel to address compliance, financial, and operational risks. You are also expected to perform IT internal control testing, IT Application Control testing (including Core Banking and ERP solutions) develop IT internal audit plans, and provide IT internal audit services for the MENA stakeholders. You will assess the client s current state IT internal controls for the clients IT environment and identify IT risks and subsequent recommendations. Working with client personnel to analyse, evaluate and enhance information systems facilitating the business internal control process, and assisting clients and other technology professionals in performing information technology control audits, information technology control engagements, security audits and security engagements. Skills and attributes for success Collaborating with other members of the engagement team to plan the engagement and develop work program timelines, risk assessments and other documents/templates. Able to manage Senior stakeholders in the IT internal audit domain. Experience in leading teams to execute IT audit/Risk Management within stipulated timeline along with high quality deliverables. Lead and execute IT internal audit engagements. Exposure to ITGC testing, IS audits SOC2 audits, ISMS and COBIT reviews Experience in performing IT audits in Banking and Telecom sector is preferred. Good Communication skill and willingness to travel at a short notice Experience in applying relevant technical knowledge in at least one of the following type of engagements ITGC audits; (b) IT internal or operational audits; (c) ERP security and control reviews (Oracle and/or SAP) (d) application control testing Demonstrating and applying strong project management skills, inspiring teamwork and responsibility with engagement team members To qualify for the role, you must have A bachelors or masters degree A minimum of 4-8 years of relevant years of experience working as Information security professional with IT/IS internal audit background in a professional services firm. Excellent communication skills with consulting experience preferred. A valid passport for travel. Ideally, you ll also have A bachelors or masters degree in B. TECH/B. E, MS, MBA in accounting or a related discipline. ISO27001, ITSM, CoBIT, ITIL V3, CISA, CISM, CIA (anyone certification is desired) Experience of IT controls review in Banking sector or Telecom sector will be preferred
