Skip to content

IT Internal Audit Manager

  • On-site
    • Great World City, Central Singapore, Singapore
  • KCS

Job description


This position reports to the Senior Manager - Internal Audit.

Key Responsibilities:

  • Candidate should be strong at IT audits covering IT General Controls, IT Application Controls and Security Controls, IT Infrastructure & Network and Cybersecurity. Knowledge and experience on Financial, Compliance and Operational audits highly favourable.
  • You will be responsible for leading IT Audits for the Group. This will include reviewing and providing advice on the adequacy and effectiveness of control framework/ environment, and controls over the aforesaid areas within the audit scope.
  • This will include managing IT and other relevant stakeholders to plan, execute and complete the required audit assignments/ initiatives. It is important to identify root cause for issues to aid in the development of value-adding recommendations that can effectively mitigate risks. Quantify risks where possible such as potential financial exposure, implication to operations and reputation.
  • You will be responsible to present the findings at the closing meeting as well as draft the final audit report for issuance, and present to the Audit Committee (where required). Conduct the required follow-ups to ensure adoption.
  • Provide support to fellow business auditors as part of integrated audit team for selected audits. Areas that you may support include e.g., application review, validation of workflow and control configuration, access rights governance and data analytics etc. From time-to-time, you may be called upon to execute selected Financial, Compliance and Operational audits as well. Ability to adapt and be agile is key.
  • You will also be involved in selected advisory engagements to support the business e.g., special reviews, enterprise risk management initiatives, implementation of new processes or tools. An emerging area will be on ESG. Other efforts to promulgate control awareness include assisting in conducting trainings and workshops.

Job requirements

Required Skills/Experience:

  • A minimum of 10 years of relevant IT audit working experience (preferably a combination of working experience in both commercial organisation and professional firms). Relevant working exposure to maritime industry will be an advantage.
  • Strong understanding of complex business and IT processes and their related risks and controls. Possess good competencies in auditing IT General Controls, IT Application Controls and Security Controls, IT Infrastructure & Network and Cybersecurity.
  • Strong in data analytics, able to analyse complex data, evaluate results to draw logical conclusions on information, systems, processes and controls.
  • Candidate must be a confident individual who engages and brainstorms, tries different approaches and builds scenarios. While your working style is collaborative, you are independent, self-driven and operate in a systematic and structured way. You must be able to work independently and develop good working relationship with key stakeholders. You should demonstrate the ability grasp the bigger picture and zoom in to the details to consistently deliver quality output within agreed deadlines.
  • Possess the right mindset and resilience to effectively lead engagements and deliver impactful work in a fast-paced environment. Expected to be able to multi-task.
  • An excellent command of written and spoken English is a pre-requisite and should also be evident through good report writing skills.
  • Approximately 15%-20% overseas travelling is expected.

Required Qualifications:

  • Bachelor’s degree in Accounting, Information Systems, Computer Science or related discipline.
  • SAP IT audit knowledge is a must.
  • Proficient in Microsoft Office and data analytics tools (e.g., IDEAS, Power BI, advanced excel) on large datasets to generate meaningful and actionable insights on audit engagements.
  • Certification in Certified Information Systems Auditor (CISA) and/or Certified Information Systems Security Professional (CISSP) is required.
  • Other relevant professional qualification(s) such as Certified Information Security Manager (CISM), Certified Internal Auditor (CIA), Certified Information Privacy Manager (CIPM), Certified Security Professional (CCSP) will be an advantage.
  • Good understanding of COSO, COBIT, ISO 27000, NIST and related standards.

or

Apply with Linkedin unavailable
Apply with Indeed unavailable