Job description

Job Description

As a member of the Technology and Digitalisation (TAD) audit team, this role supports the delivery of assigned technology audit engagements in accordance with the Group Audit methodology and applicable regulatory expectations. This role offers the opportunity to combine technology expertise, data analytics, and audit judgement to deliver impactful assurance in a rapidly evolving digital and regulatory landscape.

Key Responsibilities

• Participate in technology audit engagements, including reviews of the Bank’s IT infrastructure, technology controls, and IT-related processes.
• Perform audit activities in accordance with the Bank’s internal audit methodology, covering audit planning, fieldwork execution, reporting, issue follow-up, and closure.
• Support the rollout of Continuous Auditing (CA) initiatives and the expansion of CA adoption across technology audit areas
• Work closely with technology auditors to develop and enhance data analytics (DA) use cases, dashboards, and automated routines to improve sampling, detect anomalies, and generate meaningful audit insights.

Requirements

• Recognised degree or equivalent professional qualification in Information Systems, Computer Science, Engineering, or a related discipline, with 6 to 8 years of relevant experience.
• Experience in one or more technology domains, such as Windows, Unix, AS400, firewalls, network devices, databases, security operations, or application delivery, with the ability to apply this experience in an audit or assurance context.
• Basic understanding of common cybersecurity control domains, including vulnerability management, network security, secure application controls, detection and response, and data leakage prevention.
• Preference will be given to candidates with strong data analytics, visualisation, and scripting skills (e.g. SQL, Python, or equivalent tools and languages).
• Professional certifications such as CISA, CISSP and CISM are an advantage but not mandatory.
• Good writing and interpersonal communication skills

Candidates with strong data analytics, programming, or automation backgrounds, who are keen to apply their technical skills in a risk and assurance environment and to pursue a career in internal audit, are encouraged to apply, even if they do not come from a traditional audit background.

Additional Requirements