IT Internal Auditor

Overview

The IT Internal Auditor will report to the Director, Internal Audit, Europe (based in Valletta, Malta) and be responsible for executing IT regulatory and operational audits, assisting with the IT General Controls (ITGC) component of US Sarbanes-Oxley (SOX), and other areas of compliance, as needed. This will be a dynamic and hands-on role with opportunities for cross-training, upper-level management interaction and special reviews.  

This role involves evaluating the adequacy and effectiveness of internal controls, risk management, and governance practices related to the organization’s IT systems. The IT Internal Auditor will collaborate with various departments and geographically dispersed teams to ensure global compliance.

Responsibilities:

IT Audits:

• Plan, conduct, and document IT audits in accordance with the annual audit plan.
• Evaluate the design and effectiveness of IT controls across various IT domains (e.g., application controls, system development life cycle, information security, change management, and IT operations).
• Identify and assess IT risks and provide recommendations to mitigate those risks.
• Prepare clear and concise audit reports summarizing audit findings and recommendations for improvement.
• Perform periodic follow-up activities and maintain adequate documentation of the work performed.
• Assist with the upkeep of the internal audit universe and risk assessments therein for the development of risk based internal audit plans.

SOX Compliance:

• Assist in the development and execution of the ITGC testing plan for SOX compliance.
• Evaluate the effectiveness of ITGCs, including access controls, change management, data backup, and recovery processes.
• Perform annual application walkthroughs.
• Document and test ITGCs to ensure compliance with SOX requirements.
• Work with management to remediate deficiencies and ensure timely resolution of SOX-related issues.

Collaboration and Communication:

• Work closely with global internal audit team members, external consultants, IT staff, and other departments to ensure a comprehensive audit approach.
• Communicate audit results and recommendations to management and stakeholders.
• Prepare written conclusions and recommendations that address areas of concern
• Provide guidance and support to IT staff on internal control best practices and compliance requirements.

Continuous Improvement:

• Stay up-to-date with industry best practices, regulatory changes, and emerging risks in IT audit and compliance.
• Contribute to the continuous improvement of internal audit methodologies and processes.
• Ensure the principles of integrity, objectivity, confidentiality, and competency are applied and upheld.
• Perform any other ad hoc assignments or projects as requested.

 

Requirements:

• Investigative and analytical skills.
• Detail-oriented and well-organized approach to work.
• Critical thinking, self-starter and eager to learn.
• Demonstrate high standards of conduct and ethics as well as appropriate judgment, independence, and discretion.
• Flexible, adaptable, and comfortable with the unknown.
• Ability to communicate effectively, influence, and partner with cross-functional teams.
• Ability to multitask as well as work under pressure in a fast-paced and changing environment.
• Takes responsibility and ownership of tasks at hand.
• Decision-making and good judgment.
• Good interpersonal and communication skills.
• Team player.

Education and experience:

• 4-5 years of related IT audit experience in a regulated environment (private or public) – SOX experience will be considered an asset
• CISA certification required, together with a working knowledge of COSO and COBIT
• Advanced knowledge of Microsoft Office (PowerPoint, Excel, Word, etc.)
• Big-4 experience is preferred
• An excellent command of the English language (both written and spoken)

 

 

We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity and/or expression, status as a veteran, and basis of disability or any other federal, state or local protected class.

---