QUALIFICATIONS AND JOB DESCRIPTION
- Previous experience in an external or internal IT audit / control function,
- Bachelor’s degree in Computer Sciences, Electric/Electronic, Industrial, Mathematical Engineering, MIS or related fields,
- Minimum 3 years of experience in in IT audit, IT consulting and advisory, IT risk management, information security areas,
- IT knowledge and expertise on Technology Processes and Systems such as Applications, Databases, Operating Systems, Network, Information Security
- CISA, CISSP are additional assets
- Team player with highly developed interpersonal skills: ability to build credible relationships with management and other staff,
- High ethical standards and values; ability to maintain confidentiality regarding audit issues and findings,
- No military obligation for male candidates,
- Excellent command of English, both written and spoken.
- Has knowledge on Personal Data Protection Law (KVKK) in Turkey; GDPR knowledge is a plus,
- Experience with preparing IT risk assessments, audit programs and workpapers for IT related controls and processes,
- Know-how in frameworks such as COBIT, ITIL, COSO, ISO27001, ISO22301 etc. is an additional asset,
- Experience in ERP Systems SAP or ORACLE JDE,
- Ability to gather, analyse and evaluate information to convert to accurate and correct reports with strong analytical skills,
- Willing to perform data analytics and analysis,
- Ability to understand view of the business units to evaluate and present meaningful audit findings, practicality and high level of reasoning ability,
- Keen to develop themselves in different disciplines such as Banking, Audit, Information Technology, Cyber Security,
- High degree of analytical mind, focused on details, strong business follow-up, committed on task,
- Knowledge at MS Office programs at advanced level,
- Excellent reporting and report writing skills.
JOB DESCRIPTION
- Conducting audit activities in a professional manner in accordance with the approved audit program and reporting to Head of Internal Audit in developing the internal audit strategy in line with IT strategy,
- Managing the full IT Audit engagement process, controlling audit assignments from planning through to finalization of reports in line with agreed timescales,
- Continuously evaluating and identifying risk exposures relating to the organization’s IT governance, operations and information systems,
- Continuous monitoring of technological developments and their risks and opportunities and evaluate their impact on business processes during audits,
- Performing the follow-up of audit results in coordination with related parties,
- Reporting significant issues related to the processes for controlling the activities of the organization, including potential and individually conducting follow-up process to monitor after audit process,
- Developing value-added, creative recommendations and reports based on audits,
- Performing Digital Process Audits to address and evaluate Business Impacts of an IT Risks to keep up with the ever-changing Global Digital Transformation trends,
- Developing remediation points to key root causes of the risks identified within the scope of audit activities and following up them,
- Presenting and reporting the audit findings in well-drafted and understandable manner to top management,
- Conduct IT related ad-hoc audit assignments (fraud / investigations),
- Monitoring compliance of the business processes and information systems following the regulations and developments closely in the sector and professional audit field.
