IT Auditor

Gleeson Recruitment Group are currently business partnering with a large multi-national company based in North Birmingham. Our client requires an IT Auditor to join their Head Office.

IT Auditor purpose:

• To plan and undertake technology related audits covering IT infrastructure, applications, technical and information security, system development and programme management.

This is a fantastic opportunity in North Birmingham for an IT Auditor to enhance and utilise their experience in Information Security technology auditing within a growing organisation.The IT Auditor key responsibilities are:

• Performs general and application control reviews for simple to complex computer information systems.
• Undertakes reviews of existing controls framework in relation to the PCI-DSS and ISO27001 standards.
• Performs information control reviews to include system development standards, operating procedures, system security, programming controls, communication controls, backup and disaster recovery, and system maintenance.
• Directs and/or performs reviews of internal control procedures and security for systems under development and/or enhancements to current systems.
• Prepares audit finding memoranda and working papers to ensure that adequate documentation exists to support the completed audit and conclusions.
• Prepares and presents written and oral reports and other technical information in a pertinent, concise, and accurate manner for distribution to management.
• Follows up on audit findings to ensure that management has taken corrective action(s).
• Maintains currency of knowledge with respect to relevant state-of-the-art technology, equipment, and/or systems.
• Conduct operational, compliance, financial and investigative audits, as assigned.
• Principle focus will be on auditing information security controls, and plans to implement information security controls to meet or exceed the standards as set out in ISO27001.

The IT Auditor will possess:

• The ideal candidate will be an experienced Information Security Systems or audit professional with one or more of the following qualifications:

1. CISA (Certified Information Systems Auditor)
2. ISO 27001 Lead Audit
3. CISM (Certified Information Security Manager)
4. CISSP (Certified Information Systems Security Professional)
5. CRISC (Certified in Risk and Information Systems Control)

• Knowledge of ISO 27001 standards plus experience conducting external or internal client based and supplier audits is desirable.
• The candidate will be a strong communicator and team player and capable of producing high quality written output. Given the high proportion of travel envisaged in this role the ideal candidate will have experience of undertaking work in different countries and working effectively with stakeholders whose first language is not English.

This role is suited to someone who is self-motivated and can work with minimal supervision and oversight.

Additional core experience required for the IT Auditor:

• Knowledge of current technological developments / trends in area of expertise.
• Ability to evaluate and review a range of midrange, PC, and distributed production and applications computer and telephony systems.
• Ability to gather data, compile information, and prepare reports.
• Knowledge of auditing concepts and principles.
• Ability to perform control reviews on systems development, operations, programming, control, and security procedures and standards.
• Ability to review system backup, disaster recovery and maintenance procedures.
• Ability to communicate with, and understand the requirements of, professional staff in all areas of technology.
• Ability to create, compose, and edit written materials.
• Knowledge of computer systems development and programming.
• Knowledge of general accounting principles.

The IT Auditor vacancy based in North Birmingham provides an excellent remuneration package with extensive benefits.