Tatweer Petroleum
Internal Auditor (Cyber & Information Systems)
Tatweer Petroleum, California, Missouri, United States, 65018
Job Title:
Internal Auditor (Cyber & Information Systems) (2300001B)Job Purpose:Conduct Information System/Information Technology audits as per the annual audit plan and the IIA Standards to facilitate the assessment of:Effectiveness and efficiency of operations.Reliability and integrity of financial and operational information.Safeguarding of Company assets.Compliance with laws, regulations, and internal control framework.The design and operational status of internal controls and other risk mitigation measures within all business processes subject to audit.The Enterprise Risk Management (ERM) process including Business Continuity management (BCM) process.Key Result Areas:Actively participate in the periodic risk assessment of corporate business processes in the development of strategic and annual internal audit plans.Recommend changes to existing processes or implementation of new processes to facilitate business process improvements.Explore alternatives to conventional approaches in business processes and respond with innovative solutions to improve efficiency.Identify potential IT risks and related information system issues.Provide an educated opinion on the design and operational status of internal controls and risk mitigation measures.Function as an internal business consultant to provide governance advice for information system and business processes.Identify new risks for inclusion in the corporate/department risk register.Take part in major IT initiatives and transformation projects review.Plan, coordinate, and manage each IT individual audit autonomously.Develop the audit program for the assigned audit.Assist the Technical and Support Internal Audit teams in the examination and analysis of records.Execute and assist in execution of assigned areas of the internal audit plan.Execute Cyber and IT audit engagements in accordance with the approved audit program.Assist Senior Internal auditors in finalizing IT audit observations.Participate in conducting special reviews and undertake administrative duties.Follow-up on the implementation status of agreed action points.Assist the External Auditors and Auditors from the National Audit Office.Proactively complete assigned trainings and identify training needs for self-development.Provide on-job training to departmental trainees.Job Context:As an integral part of the Internal Audit Department, the Internal Auditor- Cyber & Information system shall assist the Internal Audit team to provide independent assurance over the soundness of the risk and internal controls framework.Qualifications:Bachelor’s degree in Computer Science/Information Technology/Information Systems.Professional Information system/technology certifications such as CISA, CPA, CISSP, CIA, CISM, CFE, CA, GSNA, MBA, PMP.Minimum 5 years of Information System Auditing experience, preferably in a large organization.Knowledge of Enterprise Risk Management, Risk Based Internal Auditing (RBIA) and best practice auditing techniques.Possess advanced knowledge of network and application vulnerability assessment.Strong proficiency with database applications, including Access and SQL, and Microsoft Office.Ability to plan scheduled audit work and conduct complex analysis.Excellent analytical, oral and written communication skills, and good interpersonal skills.
#J-18808-Ljbffr
Internal Auditor (Cyber & Information Systems) (2300001B)Job Purpose:Conduct Information System/Information Technology audits as per the annual audit plan and the IIA Standards to facilitate the assessment of:Effectiveness and efficiency of operations.Reliability and integrity of financial and operational information.Safeguarding of Company assets.Compliance with laws, regulations, and internal control framework.The design and operational status of internal controls and other risk mitigation measures within all business processes subject to audit.The Enterprise Risk Management (ERM) process including Business Continuity management (BCM) process.Key Result Areas:Actively participate in the periodic risk assessment of corporate business processes in the development of strategic and annual internal audit plans.Recommend changes to existing processes or implementation of new processes to facilitate business process improvements.Explore alternatives to conventional approaches in business processes and respond with innovative solutions to improve efficiency.Identify potential IT risks and related information system issues.Provide an educated opinion on the design and operational status of internal controls and risk mitigation measures.Function as an internal business consultant to provide governance advice for information system and business processes.Identify new risks for inclusion in the corporate/department risk register.Take part in major IT initiatives and transformation projects review.Plan, coordinate, and manage each IT individual audit autonomously.Develop the audit program for the assigned audit.Assist the Technical and Support Internal Audit teams in the examination and analysis of records.Execute and assist in execution of assigned areas of the internal audit plan.Execute Cyber and IT audit engagements in accordance with the approved audit program.Assist Senior Internal auditors in finalizing IT audit observations.Participate in conducting special reviews and undertake administrative duties.Follow-up on the implementation status of agreed action points.Assist the External Auditors and Auditors from the National Audit Office.Proactively complete assigned trainings and identify training needs for self-development.Provide on-job training to departmental trainees.Job Context:As an integral part of the Internal Audit Department, the Internal Auditor- Cyber & Information system shall assist the Internal Audit team to provide independent assurance over the soundness of the risk and internal controls framework.Qualifications:Bachelor’s degree in Computer Science/Information Technology/Information Systems.Professional Information system/technology certifications such as CISA, CPA, CISSP, CIA, CISM, CFE, CA, GSNA, MBA, PMP.Minimum 5 years of Information System Auditing experience, preferably in a large organization.Knowledge of Enterprise Risk Management, Risk Based Internal Auditing (RBIA) and best practice auditing techniques.Possess advanced knowledge of network and application vulnerability assessment.Strong proficiency with database applications, including Access and SQL, and Microsoft Office.Ability to plan scheduled audit work and conduct complex analysis.Excellent analytical, oral and written communication skills, and good interpersonal skills.
#J-18808-Ljbffr