Senior IT Auditor and Cyber Security Consultant / Hybrid

Senior IT Auditor and Cyber Security Consultant | Hybrid | Day Shift

Discover your 100% YOU with us!

Position: Senior IT Auditor and Cyber Security Consultant
Location: IT Park, Cebu
Work setup & shift: Hybrid (3x onsite / 2x wfh) l Dayshift

Why join us?

You'll have:

Competitive Rewards: Enjoy above-market compensation, healthcare coverage on day one, plus one or more dependents, paid time-off with cash conversion, group life insurance, and performance bonuses
A Collaborative Spirit: Contribute to a positive and engaging work environment by participating in company-sponsored events and activities.
Work-Life Harmony: Enjoy the balance between work and life that suits you with flexible work arrangements.
Career Growth: Take advantage of opportunities for continuous learning and career advancement.
Inclusive Teamwork: Be part of a team that celebrates diversity and fosters an inclusive culture.

Join our multinational network of accounting firms, forming the sixth-largest accountancy professional services network in the world by revenue.

Your Role: Senior IT Auditor and Cyber Security Consultant

Responsibilities:

Conduct various risk advisory engagements (e.g. internal audit, consulting, compliance, etc) across a broad range of industries simultaneously with numerous engagement team members;

Work with clients at various levels in different business environments;
Performs technical and operational reviews for a range of clients with differing risk profiles;
Maintenance and completion of Engagement Files (i.e. electronic working papers) within a timely manner for Senior Consultant/Manager review;
Summarizes the key areas of the engagement for the Senior Consultant/Manager;
Identifies potential issues and documenting issue and proposed recommendation for Senior Consultant/Manager attention;
Draft engagement reports in conjunction with Senior Consultant/Manager that provide practical and commercial business advice;
Identifies and refers ethical and conflict issues to Manager/Partner;
Develop a detailed understanding of client systems, processes and internal control environment;
Develop a working knowledge of the fundamental electronic audit tools;
Completes allocated tasks in accordance with directions given; and
Maintains personal documentation (training records, time sheets, expenses).

What you need:

Minimum 5 year’ Professional Services experience in Cyber / IT technical delivery, Business Continuity, IT audit, internal controls, or risk management.
Experience performing security risk assessments, testing or auditing of cybersecurity or information security standards or governance frameworks (e.g. one or more of COBIT, NIST Cyber Security Framework, ASD Top 35 and Essential Eight, PCI DSS, CIS Critical Security Controls Top 20, PSPF, Australian Government Information Security Manual, VPDSS, ISO/IEC 27001, Cloud Security Alliance Guidance, Australian Privacy Principles, GDPR).
Experience with leading engagements on Business Continuity (BCP), IT Disaster Recovery (IT DRP), assessment of recovery plans for critical applications and systems, Incident management as well as review against frameworks such as ISO 22301, BS 25999
Experience in performing engagements where teams are completing various technical testing assessments and be able to translate technical findings and articulate recommendations for non-technical client staff.
Demonstrated knowledge of control best practices in IT general controls and applications

Other benefits:

Life Insurance
HMO plus dependents
Allowances