Senior IT Audit

Location: Taguig City, Philippines

• Work directly with IT Audit Managers and clients to gain an understanding of the client’s IT systems, infrastructure, and control environment
• Apply that understanding to a variety of IT risk and control frameworks such as SOC, PCI, HIPAA, ISO, FFIEC, NIST, CIS Security and many others

• Understand the clients and their stakeholders to assist with an independent assessment of their IT risks and be involved with developing various types of reports and presentations to stakeholders

• Working directly with IT Audit Managers to develop and follow audit plans to evaluate the design and operational effectiveness of client controls

• Clearly document the procedures, results of tests, and conclusions performed during control testing

• Work with junior level staff and interns to provide training and support throughout the course of engagements
• Review junior level staff and interns’ work and provide feedback

• Ensure quality control procedures are being executed under direction of engagement supervisor, and perform thorough self-review of all work prior to submission

• Track time and maintain designated chargeable hours for the year

• You will supervise IT Audit Staff and interns throughout engagements. 
• You will review their work and provide feedback to the staff and to the IT Audit Managers

• Work is conducted in a professional office environment with minimal distractions

• Prolonged periods of sitting at a desk and performing work in front of a computer screen for long periods of time
• Must be able to lift up to 15 pounds at a time

• Some travel is required.  The TRC team meets once a year at various offices in the county. 
• Some client travel may be required.   

• Bachelor's degree in accounting, information systems, or similar with an interest in information technology
• Project Management Experience: must be able to execute an audit plan, manage client requests, create an engagement budget, and planresources based on engagement progression.
• A minimum of 2 – 4 years of related internal audit and IT audit experience

• Certified Public Accountant (CPA)
• Certified Information Systems Auditor (CISA): ISACA's globally recognized cornerstone certification for IS, audit, control, assurance, and security professionals who control, monitor, and assess an organization's information technology and business systems
• Certified Information Systems Security Professional (CISSP): An independent information security certification governed by the International Information Systems Security Certification
• Consortium, also known as ISC², which provides security training to information assets
• Certified Information Security Manager (CISM): ISACA's certification program for those who manage, design, oversee, or assess an enterprise's information security