Cyber & Investigation Audit Lead
Job details
Role PurposeAs Cyber & Investigation Audit Lead , you play a pivotal role in the auditing process, positioned strategically between the audit team and management. Your primary responsibilities include coordinating and overseeing the daily activities of the audit team, ensuring the effective execution of cybersecurity & investigations audit plans, and maintaining the highest standards of quality and accuracy. Your expertise in security, auditing principles and practices is vital in guiding the team through complex auditing processes, while also serving as a mentor to junior auditors. You liaise with the Audit Manager to report on audit progress and findings, contributing significantly to the identification and assessment of potential risks. Your role is essential in upholding security compliance with regulatory frameworks and in helping to create a collaborative and knowledge-driven environment within the team.Key Responsibilities:• Conducts cyber and investigations audits according to the relevant KSA regulatory authorities, and where appropriate, other international/ industry standards.• Cultivates big-picture perspective by considering the context of processes and maturity of the department, system or facility being audited.• Develops an understanding of organizational context through thorough determination and understanding of internal and external business risk and non-compliance issues that can impact the organization and its objectives.• Investigates and understands the root causes of audit findings and uses them as the basis for determining remediation activities and assessing the effectiveness of those actions.• Demonstrates understanding of auditee perspectives and awareness of business risks and non-compliance challenges faced by stakeholders and show empathy during the process.• Recognizes opportunities for enhanced quality or efficiencies and challenges with, or considerations of implementing automation, analytics, and AI across each phase of audits.• Ensures that management are kept abreast of significant audit issues if and when they arise, and that audit findings and next steps are agreed with all relevant stakeholders prior to circulation.• Performs self-assessment and quality control to ensure audit reports and other deliverables are of sufficient quality when presented to stakeholders and/or Audit Senior Management for review.• Coordinates with Internal Audit team in following up open and overdue observations.• Ensures that emerging business risks are proactively understood and reported to audit leadership promptly.• Manages budget process of all audits on the yearly plan ensuring that costs are managed, and overruns discussed with Manager or Senior Manager in good time.• Assists Management in the planning, design, and implementation of appropriate audit plans to ensure that deliverables for assigned audits are achieved.• Develops strong stakeholder relationships and engages them positively in the initiation, planning, fieldwork and reporting phases of audits to ensure they are aware of upcoming audit plans, audit progress and the status of open audit issues/findings.• Builds effective relationships and open lines of communication with all stakeholders across NEOM.• Takes ownership of drafting audit reports and other deliverables to ensure that these are delivered on time and on budget.• Analyzes own strengths and weaknesses to maximize personal contribution to the organization.• Guides the internal audit team in using digital tools, creating an environment that supports digital skill development among team members.Qualifications:• Minimum Bachelor s degree, preferably in Technology field.• Relevant professional qualifications (e.g. CISA, CISSP, CISM, GSEC, Security+, COBIT, ITIL etc.) or local equivalent.• Knowledge on KSA National Cybersecurity Authority (NCA) is desired.• Security knowledge in critical infrastructure, including OT/IOT is desired.• Must become a member of the Institute of Internal Auditors (IIA).• Minimum 4-6 years experience in IT Audit or other Risk Management / Compliance function in large and complex organisations, with p referably 2+ years experience in external audit / risk assurance (ideally Big4).• Prior experience in cybersecurity audits (planning, leading, and delivering) associated with critical business applications, on-premises & Cloud infrastructure (e.g. Azure, AWS), operating systems (e.g. Windows, Linux), Databases, SAP, third parties, and network components in modern security architecture (Zero Trust).• Experience in developing audits based on Security Standards such as NIST Cyber & Privacy, ISO 27001/2, CIS Controls, and MITRE ATT&CK frameworks.• Familiar with conducting security investigations relating to suspected incidents or speak-up cases.• Prior experience evaluating Active Directory and Identity & Access management solutions with the ability to run customized reports.• Advanced understanding of risk management concepts and techniques.• Familiarity with advanced IPPF audit standards and regulatory requirements, including Sarbanes-Oxley (SOx).• Excellent verbal and communication skills in English (Arabic desirable).• Ability to train and mentor junior auditors.• Proficiency in data analysis tools and techniques and awareness of existing and emerging digital technologies.• Experience in TeamMate Audit Management Systems is an advantage. Company Industry Defence Military Government Department / Functional Area IT Software Keywords Cyber & Investigation Audit Lead Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com People Looking for Cyber & Investigation Audit Lead Jobs also searched
#J-18808-Ljbffr IT Management & IT Project Management
Apply safely
To stay safe in your job search, information on common scams and to get free expert advice, we recommend that you visit SAFERjobs, a non-profit, joint industry and law enforcement organization working to combat job scams.
