A
Senior Information Technology Auditor
Riyadh, Riyadh Province, Saudi Arabia • Penuh Waktu
Jadilah yang pertama mendaftar
- Pengalaman
- 7–10 tahun
- Gaji
- —
- Lowongan
- 1
- Diposting
- 12 jam yang lalu
- Mode kerja
- Di kantor
- Pendidikan
- Gelar sarjana
- Melanjutkan
- Wajib mendaftar
Tempat Anda akan bekerja
Deskripsi pekerjaan
Job Overview
The Senior Information Technology Auditor will carry out technology and cyber security audits to ensure the effectiveness of IT governance, security controls, cyber resilience, infrastructure, applications, cloud services, and daily technology operations. This role guarantees that technology-related risks are properly managed and that the organization complies with regulatory standards.
Primary Responsibilities
- Plan and conduct technology and cybersecurity audits as per the approved annual audit schedule.
- Evaluate the design and operational effectiveness of IT general controls and application controls.
- Examine areas such as cybersecurity governance, identity and access management, network and endpoint security, cloud protection, vulnerability management, incident handling, and security monitoring.
- Assess IT infrastructure components including databases, operating systems, cloud platforms, and disaster recovery/business continuity protocols.
- Verify compliance with regulations, internal policies, and recognized standards such as the SAMA Cyber Security Framework, NCA ECC, ISO 27001, and NIST.
- Conduct risk assessments to detect control deficiencies and provide actionable improvement recommendations.
- Produce comprehensive audit documentation, reports, and presentations for management review.
- Monitor audit findings to confirm the execution of agreed corrective actions.
- Contribute to investigations, special reviews, and advisory roles concerning technology and cybersecurity issues.
- Stay updated on the latest cyber threats, technology risks, and best auditing techniques.
Qualifications and Experience
- A bachelor's degree in Computer Science, IT, Cyber Security, Information Systems, or a closely related discipline.
- Professional certifications relevant to IT auditing or cybersecurity are advantageous.
- A minimum of 7 to 10 years experience in IT audit, cybersecurity audit, information security, or technology risk management.
- Prior experience in banking, financial services, or other regulated sectors is strongly preferred.