Main Job Responsibilities
1 Governance
-Participate in consulting capacity (QC) for review and value addition in ERP implementation in any entity.
-Participate in any COSO assessment for AZAQ and its entities
2 Risk Management
-Assist in risk management program including awareness sessions for formalized risk management process and implementation of system tool
-Facilitate the identification and assessment of the risk mapping to the business objectives and risk response with action plans
-Assist in identifying and evaluating organizational risk areas
-Carry out planned activities to evaluate risk management periodically
3 Overall IT Cybersecurity
-Evaluate the cybersecurity procedures and systems that govern the IT environment.
-Review, document results and formulate recommendations for review by the GRC Management.
-Follow-up with the respective IT department on the agreed recommendations to eliminate potential risks.
-Participate as assigned by the Committees working on special IT evaluation, development, and implementation projects and identify potential risks.
-Assess and evaluate the compliance of all areas within the cybersecurity domain.
Tenable Tool
-Drive the project and assist to implement the Tenable solution and scanners in all the group companies.
-Performing scans as per set and agreed calendar, generate report for the outcome, and discuss the Vulnerabilities with the responsible IT team to agree on mitigation plan to reduce the cybersecurity risks.
4 Internal Auditing ( including IT related project)
-Perform and report Audit engagements, including creation of work programs, testing, identifying issues, reviewing and analyzing evidences, and documenting client responses and action plans with full utilization of Audit System.
-Complete the Audit Work paper file at each stage of the audit process (from planning to get the audit program approved until the completion of the audit) to ensure progress is tracked.
-Develop and maintain productive client and staff relationships through individual contacts and group meetings
-Prepare IT audit reports highlighting any system weaknesses or areas of concern, and discuss them with the GRC Management as and when required as per the Annual IT Audit Plan.
-Conduct data extraction, analysis, and security reviews utilizing software tools
-Monitor implementation of the action plans as committed by management.
5 Data analytics (On-going IT Auditing)
Analyzer Tool
-Running the Scripts and extract the outcome results as per annual set plan.
-Assist the other team members in providing the required population data, creating scripts for testing specific to the audit engagement.
https://www.naukrigulf.com/senior-it-audit-officer-jobs-in-dammam-saudi-arabia-in-ali-zaid-al-quraishi-brothers-company-azaq-2-to-3-years-n-cd-170677-jid-270920000022
نسخة للطباعة 
ابلغ عن اعلان مخالف