Essential Duties and Responsibilities:

Work on client engagements, and support IT Risk Managers during the planning, executing and reporting of information systems audits and business process control reviews.

Evaluate and test IT processes and IT controls and identify areas of risk.

Apply current knowledge of IT trends and systems processes to identify security, control and risk management issues and other opportunities for improvement.

Work with other internal teams and the client to assist in the planning of the engagement strategy, define objectives, and address technology-related controls risks and issues.

Perform IT general controls reviews.

Support completion of SOC 1 and SOC 2 engagements

Communicate and report IT audit findings to senior management.

Monitor management’s responses and implementation of agreed management actions.

Participate in internal auditing outsourcing and co-sourcing arrangements for clients.

Work with BRS team to identify and resolve client issues discovered during audit and review process.

Maintain a good level of communication regarding audit progress and results.

Maintain a good working relationship with clients to enhance customer satisfaction and work with client management and staff at all levels to perform BRS services.

Proactively interact with key client management to gather information, resolve problems, and make recommendations for business and process improvements.

Assist partners and senior management on proposals and business development calls.

Gain comprehensive understanding of client operations, processes, and business objectives and utilize that knowledge on engagements.

Required Skills and Experience:

Third-level education (Ideally Bachelor's degree in Information Technology)

1- 2 years of experience at working in a technical role as an IT consultant, IS consultant, System admin, Information Security or as an IS Auditor

Understanding of IT frameworks, standards and best practice such as COBIT, ISO27001, NIST, ITIL etc.

Knowledge of IT general controls, IT infrastructure models, security risks and protection approaches

Familiar with Windows server features/role such as AD, Group Policy, DHCP, AD CS, RDS etc. 

Excellent verbal, written, and presentation skills

Excellent analytical, organisational and project management skills

Flexible, self-motivated, self-directed, able to work both as a team member and independently

Preferred Skills and Experience:

Professional qualifications such as CISA, CISM, CRISC, CGEIT, CCSP, AWS/Google/Azure Cloud certifications is an advantage