IT Auditor (Hybrid work arrangement)

Reporting to the ST Engineering Group Head Internal Audit, you will be part of the ST Engineering Group Internal Audit function and responsible to assist in evaluating the adequacy and effectiveness of ST Engineering’s Group of companies in their governance, risk management and internal controls globally.

Your will support the internal audit function in the audits, investigations and special reviews in order to provide an independent and objective assessment over governance, risk and assurance and to add value and improve the operations of ST Engineering Group.

Bachelor degree in information technology and computer science and/or accounting/finance.

• At least 2 years of demonstrated IT audit/ IT risk management experience, either in Internal Audit or with a reputable professional service firm. Candidates with relevant IT work, including but not limited to, in-depth applications, infrastructure, network and cybersecurity audit experience gained with established firms, and with strong interest in exploring a career in audit can also be considered.
• Solid knowledge of security concepts and configurations of SAP S4/HANA, Oracle EBS, Windows, Azure AD, Linux, MS SQL, etc.
• Experience in IT general and application controls review of technology applications, operating systems, databases, network and infrastructure
• Excellent written and verbal communication skills
• Excellent interpersonal skills in dealing with people and understanding human relations
• Able to travel globally up to 30% of the calendar year

• Technical knowledge in data analytics tools (i.e. Tableau, ACL) and common scripting languages (i.e. Python, SQL) are preferred
• Possess the interest to pursue or are certified CISA/ CISSP/ CIA/ CDPSE will be of added advantage
• Willingness to perform Operation audits as needed
• Creative approach to solving problems
• Self-starter, meticulous and possess strong risk mindset
• Singaporean only

• Prepare detailed audit program and execute IT audits and Integrated audits through applying risk-based auditing skills, usage of data analytics and professional judgement
• Perform IT general and application controls review leveraging on strong technical knowledge of various technology applications, operating systems, databases, network and infrastructure to evaluate controls design and operating effectiveness
• Develop relevant scripts/ analysis objectives and perform data analysis to identify trends and behavior of businesses
• Communicate in formal audit report writing, the root causes of identified issues, associated risks, recommendations for improvements and ensure corrective action plans are properly implemented by management
• Support the Group Internal Audit in the prompt delivery of IT audit plan, including fraud audits, data analytics projects and other ad-hoc duties on request