IT Internal Auditor
Euronext
- Porto
- Permanente
- Horário completo
- Contribute to the delivery of the internal audit plan for the IT scope. The IT Auditor conducts reviews of various IT systems and business processes to ensure compliance with group policies, laws and regulations and international standards of good practices. Through assignments and continuous monitoring activities, the IT Auditor evaluates governance processes and the effectiveness of the organization’s risk management and internal control processes. This includes:
- following a risk based approach and in conjunction with the Chief Audit Executive, developing and executing IT audit programs and testing procedures;
- identifying discrepancies and providing recommendations for risk reduction and process improvements;
- preparing and guaranteeing the quality of the formal Audit reports for distribution to management and the Audit Committee;
- Contributing to Internal Audit's recommendation follow-up process and liaising with management on progress in implementing improvement and development items;
- Supporting the annual risk assessment process and planning process of IT Internal Audit;
- Ensuring that audit activities follow applicable standards and are documented in line with defined methodologies in the organisation's internal audit tool;
- Contributing to Internal Audit's reporting and communication activities to relevant stakeholders;
- Supporting continuous improvement efforts within the internal audit team and ad-hoc projects established to improve the capacities of the team.
- Master’s degree (or equivalent) in Computer Science, Cyber Security, Information Security, Information Technology or a related field.
- 2-10 years’ of relevant experience in the fields of IT and/or information security. Senior candidates are required to have minimum 3 years of previous audit experience.
- Understanding of IT systems, including networks, databases, operating systems, and application controls.
- Understanding of IT governance, IT risk and internal control management and assessment processes.
- Knowledge of relevant standards including COBIT, NIST, ITIL and ISO 27001 & 27002.
- Fluent in English (spoken and written)
- Autonomous, rigorous and possesses excellent analytical skills
- Accountable, proactive with high level of integrity
- Collaborative, open and pragmatic
- Possesses strong communication skills both verbally and written, including interviewing skills.
- strong presentation skills and ability to discuss risk in a practical and relatable manner
- Experience from managing senior stakeholders
- strong prioritization skills and ability to multi-task on various projects and initiatives.
- Big 4 experience is a plus
- Understanding of Cyber Security frameworks is a plus
- CISA / CISSP or related certification
- Leverage access to data and analytics tools to analyze populations of data of basic to moderate complexity.
- We respect and value the people we work with
- We are unified through a common purpose
- We embrace diversity and strive for inclusion
- We value transparency, communicate honestly and share information openly
- We act with integrity in everything we do
- We don’t hide our mistakes, and we learn from them
- We act with a sense of urgency and decisiveness
- We are adaptable, responsive and embrace change
- We take smart risks
- We are positively driven to make a difference and challenge the status quo
- We focus on and encourage personal leadership
- We motivate each other with our ambition
- We deliver maximum value to our customers and stakeholders
- We take ownership and are accountable for the outcome
- We reward and celebrate performance