Plan & implement risk-based IT audit programs. This includes ensuring IT audits are performed properly and in accordance with SOX / professional standards.
Perform IT audit, regulatory compliance assessment, and IT risk assessment, in areas covering IT general controls (ITGC), application controls, business cycle, and IT security review
Identify and evaluate complex technology and business risks and internal controls which mitigate risks, and related opportunities for internal control improvement
Proactively engaging in all high-risk incidents. Preparing IT Audit written reports covering the audit findings (control issue/ gap) and proposing corrective action plans to the management.
Perform effective communication with stakeholders to ensure the audit operates smoothly
May lead audit and incident management projects simultaneously