Job closed
Job description / Role
The Role:
You will support the delivery of the Annual Audit Plan for technology risk and manage the governance of controls in place to comply with ISO 27001 and corporate policies without sacrificing the effective and efficient use of corporate resources. Specific responsibilities include:
- Reviewing new systems, manuals, software, procedures, records and management controls for their adequacy to accomplish intended objectives, and recommend improvements to ensure that new initiatives achieve company objectives.
- Performing complex technical audit reviews, which require a higher level of audit expertise or skills.
- Planning and review audits in a professional manner, ensuring that major risk areas are addressed therein.
- Participating in annual risk assessment and audit planning.
- Supervising audit employees on a continuous basis in various ways e.g. monthly employee scheduling, monitoring progress of audit reviews, etc. to ensure that audits are completed on a timely basis, in accordance with departmental standards and audit program.
- Creating audit reports and present to management teams covering the output of audit activity, discussing deficiencies and recommending ways to improve and obtain management agreement to make corrective actions
Skills and Requirements:
- Bachelor's degree in computing science, management information systems, engineering or accounting
- Professional audit / security certifications (at a minimum one or two): CISSP, GSNA, GSEC, CISA, ISO 27001Auditor/Lead Auditor. Secondary certifications (a plus): MCSE, ITIL, Unix, RedHat, CEH, CIA
- Minimum 5 - 7 years' progressive IT audit experience
- Strong working knowledge in security controls for various operating, databases, ERP systems and application systems.
- Strong working knowledge of ACL and/or other analytical tools for data analysis.
- Expert knowledge in eCommerce systems, networking system, network and internet security, and VoIP technology.
- Strong working knowledge of industry best practices in backup procedures for the different infrastructure levels, recovery procedures and disaster recovery.
- Working knowledge of change management procedures for the different levels of technology infrastructure.
- Working knowledge of ISO 27001 and PCI-DSS security standards, COBiT and Val IT.
Requirements
- Bachelor's degree in computing science, management information systems, engineering or accounting
- Professional audit / security certifications (at a minimum one or two): CISSP, GSNA, GSEC, CISA, ISO 27001Auditor/Lead Auditor. Secondary certifications (a plus): MCSE, ITIL, Unix, RedHat, CEH, CIA
- Minimum 5 - 7 years' progressive IT audit experience
- Strong working knowledge in security controls for various operating, databases, ERP systems and application systems.
- Strong working knowledge of ACL and/or other analytical tools for data analysis.
- Expert knowledge in eCommerce systems, networking system, network and internet security, and VoIP technology.
- Strong working knowledge of industry best practices in backup procedures for the different infrastructure levels, recovery procedures and disaster recovery.
- Working knowledge of change management procedures for the different levels of technology infrastructure.
- Working knowledge of ISO 27001 and PCI-DSS security standards, COBiT and Val IT.
About the Company
As a leading international franchise operator, with nearly 90 of the world’s most recognised brands in its portfolio, Alshaya Group brings great shopping, dining, leisure and hospitality experiences to millions of customers across the Middle East & North Africa, Russia, Turkey, Europe and beyond.
Alshaya Group is a dynamic multinational business and family owned enterprise with a consistent record of growth and innovation. For 35 years, Alshaya has been a pioneering force in brand franchising, using its exceptional knowledge and experience to expand at pace.
Our portfolio of well-loved international brands includes Starbucks, H&M, Mothercare, Debenhams, American Eagle Outfitters, P.F. Chang’s, The Cheesecake Factory, The Body Shop, M.A.C, Victoria’s Secret, Boots, Pottery Barn, KidZania and, coming soon, Hampton by Hilton.
From one retail franchise store opened in Kuwait in 1983, Alshaya Group has consistently grown and diversified and today offers customers an unparalleled choice of brands across multiple sectors; Fashion & Footwear, Health & Beauty, Food, Optics, Pharmacy, Home Furnishings, Leisure & Entertainment, and Hotels. A diverse, skilled team of 53,000 people from 120 nationalities support more than 4,000 stores, cafes, restaurants and leisure destinations, a growing online business and a commitment to delivering great customer experiences.