Job Summary
The candidate will work as part of the Technology Audit Team and reports to the Head, Technology Assurance. The candidate will evaluate the Banks technology infrastructure, systems, and processes to ensure they are secure, adequate and efficient while compliant with relevant regulatory requirements and internal policies and guidelines. The candidate is expected to carry out technology audits as per the audit objective, scope and timeline. He will engage auditees and handle discussions, meetings (Open meeting, Exit meeting, etc.) and walkthroughs throughout audit engagements. The candidate is responsible to identify control gaps and risks associated with technology and recommend improvements and risk mitigations. The candidate is expected to build good relationships with auditee and stakeholders prior to, during and post audit engagements.
Job Responsibilities
- Key player for Technology Audit Team: Works in Technology Audit Team and reports to the Head, Technology Assurance (Technology Audit).
- Plan and Execute Audit Engagements: Oversee the planning, control, and execution of audit engagements for AeonBank.
- Conduct Comprehensive Audit Reviews: Perform audits based on established audit scope, timeline, and approach, assessing the adequacy and effectiveness of procedures, controls, processes, infrastructures, and application systems.
- Identify control gaps and risks associated with technology and provide audit recommendations: Provide independent assessment and offer objective recommendations to strengthen controls, mitigate risks, prevent losses, and add value to business processes while ensuring compliance with regulatory requirements as well as the Banks policies and procedures.
- Communicate Audit Findings: Highlight audit findings, risk implications, root causes and provide appropriate recommendations to address identified gaps and risks.
- Document Audit Work: Gather relevant information and artifacts as evidence of controls and gaps being assessed as well as to validate findings.
- Monitor Corrective Actions: Monitor status of closure for all agreed corrective actions within the agreed timelines.
- Handle ad-hoc matters: As required by the Management, Board and/or regulators.
Job Requirements
- Bachelors in Computer Science / Information Technology / Technology Audit or related fields.
- More than 5 years of technology assurance, software development, and/or technology operations experience.
- Experienced in the general technology controls review that include access control, change management, and system infrastructure areas.
- Familiar with the concept of confidentiality, integrity, and availability (CIA) and also authorisation, authentication, and non-repudiation (AAN) in order to ensure the technology environment is secure and well-protected.
- Familiar with relevant guidelines and standards that covers Financial Institutions and technology areas such as RMIT, NIST, ISO27001, and COBIT.
- Exposure to technology stacks such as GitHub, SonarQube,Visual Studio, intelliJ, Android Studio, xCode, nodeJS, ReactJS, NextJS, React Native, Java, Spring Boot, Utilities, Docker, Lens (Kubernetes IDE), DBeaver, Postman, is an advantage.
- An entrepreneurial attitude with ability to work in a fast paced, flexible environment on multiple concurrent assignments.
- Excellent interpersonal skills.
- Certification in technology audit and security related areas is a bonus e.g. CISA, CISSP, CISM.
