Senior Manager (IT Audit)
Job Description
Reporting to the Chief Audit Officer of the Office of Internal Audit (OIA), the incumbent will work closely with a team of auditors and co-sourcing service providers to carry out audit assignments covering a diverse range of IT systems, processes and controls.
Key Responsibilities
Adopting a team-based approach, collaborate with Financial and Operational Auditors to execute integrated audits; the incumbent to support IT risks areas.
Manage and work with co-sourced IT audit service providers to ensure their deliverables align with the University's audit objectives and standards.
Engage and collaborate with second-line functions (e.g., IT Security and Governance team, CISO unit, Office of Risk Management and Compliance) to ensure a cohesive approach to identify, assess, and mitigate IT-related and operational risks.
Plan and execute thematic IT systems audits and IT general controls audits and prepare audit reports with minimal supervision.
Effectively communicate audit observations and recommendations to stakeholders and conduct follow-up to ensure timely resolution of matters arising.
Proactively contribute to the enhancement and continuous improvement of the IT audit methodology and internal controls framework.
Stay informed of emerging IT risks and evolving technologies (e.g., cybersecurity, cloud computing, data analytics, AI), and provide actionable insights and recommendations to address identified risks.
Qualifications
A university degree in Information Technology, Information Systems, Computer Science, or a related field.
Professional certifications such as CISA (Certified Information System Auditor) or CISSP (Certified Information Systems Security Professional).
At least 5 years of working experience in IT audit, preferably in MNC, public sector or higher education sector.
Proven experience conducting independent audits across IT Infrastructure, IT General Controls, IT Application Controls, ERP systems and Cybersecurity domains.
Strong knowledge of IT governance frameworks and best practices (COBIT, NIST-CSF, ISO 27001).
Understanding of cloud infrastructure (e.g., AWS, Azure or Google Cloud) and its associated risks.
Experience with IT risk assessment, controls evaluation, and regulatory compliance.
Strong analytical, organizational, problem-solving, communication and reporting writing skills.
High level of integrity, ethics, and professionalism in handling confidential information.
More Information
Location: Kent Ridge Campus
Employee Referral Eligible: Yes
Job requisition ID: 25995
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
