IT Auditor

Job Purpose:  

TESTQ Technologies is an IT services and Solutions Company whose offerings span over a variety of industry sectors with strong technical, domain, and process expertise helping clients grow their businesses and decrease operational costs on a continuous basis in an ever-changing business environment.  

This opportunity is in the solution design and development arena for IT Auditor who will be responsible for assessing the effectiveness of our IT systems and controls to ensure they support the organization's objectives and comply with regulatory requirements and a crucial role in identifying risks, evaluating controls, or providing recommendations to enhance the overall security and efficiency of our IT infrastructure. 

Job Description (Main Duties and Responsibilities):  

• Conduct audits of IT systems, processes, and controls to evaluate their effectiveness and adherence to company policies and industry standards. 
• Identify and assess risks related to IT infrastructure, cyber security, data integrity, and regulatory compliance. 
• Develop audit plans, procedures, and testing methodologies based on risk assessments and regulatory requirements. 
• Perform detailed testing of IT controls, document findings, and communicate audit results to management and stakeholders. 
• Collaborate with IT and business teams to recommend improvements in IT controls, processes, and systems to mitigate risks and enhance operational efficiency. 
• Stay updated with industry trends, emerging technologies, and regulatory changes to ensure audit practices remain current and effective. 
• Prepare comprehensive audit reports and presentations summarizing audit findings, recommendations, and management responses. 

Key Skills, Qualifications and Experience Needed [The candidate must demonstrate these in all stages of assessment]  

•  Bachelor’s degree in Information Technology, Computer Science, Accounting, or related field. 
• Professional certification such as CISA (Certified Information Systems Auditor), CIA (Certified Internal Auditor), CISSP (Certified Information Systems Security Professional), or equivalent is preferable. 
• Proven 3-4 years of experience as an IT Auditor or in a similar role, conducting audits of IT systems, controls, and processes. 
• Strong understanding of IT infrastructure, cybersecurity principles, and information security best practices. 
• Proficiency with tools such as ACL, IDEA, or GRC software (Governance, Risk Management, and Compliance). 
• Familiarity with frameworks like COBIT, ISO 27001, and NIST Cybersecurity Framework. 
• Experience with audit tools and techniques, risk assessment methodologies, and regulatory compliance requirements (e.g., GDPR, SOX, PCI-DSS). 
• Excellent analytical and problem-solving skills, with the ability to interpret complex information and identify areas for improvement. 
• Skills in data analysis tools (Excel, SQL, Tableau) to interpret audit data and identify trends. 
• Knowledge of cloud service models (IaaS, PaaS, SaaS) and their security implications. 
• Understanding of ITSM frameworks like ITIL for evaluating service delivery and support processes. 
• Skills in evaluating network architectures, firewalls, intrusion detection systems (IDS), and security protocols. 
• Skilled in a successful IT Auditor is the ability to properly assess risks and determine which are the most pressing versus those that can be addressed at a later time. 

Other Key skills:  

• Good analytical and Problem-solving skills  
• Good communication skills  
• A thorough approach and Self starter  
• Focus on quality and delivery  
• Working together in teams.  
• Leadership and effective decision making.  
• Flexible Attitude  
• Excellent customer service  

Qualifications: Bachelor's degree or above in the UK or Equivalent.