IT Auditor

**Purpose**:

- To ensure an acceptable standard of Quality Management System is maintained in accordance with recognized working practice and the company’s Quality Manual and Policy.

**General Duties & Responsibilities**:

- Reports to the Group Internal Audit Manager (GIAM).
- Uphold the Company’s Code of Ethics and the Institute of Internal Auditor’s Code of Ethics specifically the principles of Integrity, Objectivity, Confidentiality and Competency.
- Conduct audit engagements following the internal audit department’s policies and procedures e.g., engagement planning, fieldwork, reporting and follow-up.
- Lead the opening and closing meetings with engagement clients.
- Assists in the conduct of assurance engagements where the work of IT specialist is required.
- Assists in the conduct of consulting engagements e.g., investigations, performance improvement studies, due diligence, etc., where the work of IT specialist is required.
- Review IT purchases such as but not limited to: Laptops and desktop computers, Mobile phones, Internet connectivity, Annual Maintenance Services related to IT assets, etc.
- Do other tasks related to the functions of internal audit department, assigned by the GIAM.

**Specific Duties & Responsibilities**:

- Develop risk-based IT Annual Audit Plan.
- Facilitate the development and maintenance of IT Risk Management.
- Identifying the weaknesses in a systems network and creating an action plan to prevent security breaches.
- Conducts IT security audits (e.g., network, operating system, and data center), including evaluation of security weaknesses and highlighting if these are properly identified and mitigated.
- Review IT related policies and procedures such as but not limited to: IT Department policies and procedures, Information Security Management System (ISMS) documents, change management, business continuity planning, disaster recovery plan, etc.
- Promptly follows-up the action plans for the raised observations.
- Participates in IT projects related to IT infrastructure and software development within the scope of internal audit activity.
- Performs audit of the asset management system including inventory of IT assets.
- Performs evaluation of internet coverage and performance.

**Knowledge and Work Experience**:
At least five (5) years of experience in IT infrastructure and networks as administrator. Adept in network security such as firewalls, anti-virus, anti-malware and other similar security tools. Understanding of Information Security Management System, Disaster Recovery and Business Continuity. Understanding of cyber-security. Understanding of IT governance. Understanding of Risk Management System. Appreciation of Software Development Life-cycle.

**Skills**:

- Good Interpersonal and communication skills. Report writing and business communication skills. Good analytical skills.

**Working Conditions**:
The job requires the employee to work in AZI Group office and requires frequent travelling within Alzayani divisions.

**Job Types**: Full-time, Permanent