IT Audit Senior Associate
DTCC
- Manila City, Metro Manila
- Permanent
- Full-time
- Competitive compensation, including base pay and annual incentive.
- Comprehensive health and life insurance and well-being benefits, based on location.
- Pension / Retirement benefits.
- Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
- DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).
- Strategic Control Impact: Identifies meaningful issues in which controls are not properly designed or are not operating effectively. Assesses the risk and control environment for processes within coverage areas. Validates the remediation of issues and completion of action plans under the guidance of a supervisor. Understands the financial services industry and risk and control environment for coverage areas and identifies new risks.
- Audit Execution: Assists IT Audit Manager or IT Senior Audit Manager with the execution of audit planning, fieldwork, and reporting. Completes risk-focused fieldwork on time and within the allocated budget, notifying the auditor in charge promptly of issues that arise or when budgets or timelines are at risk. Writes and speaks clearly and concisely and can demonstrate detailed knowledge of that area being audited. Understands and performs root cause analysis for issues; possesses and demonstrates a strong understanding of audit techniques.
- Quality Process Demonstrates a strong knowledge of our policies & procedures, particularly work paper documentation standards. Independently prepares work papers that fully align with IAD policies and procedures. Participates in continuous improvement initiatives. Aligns risk and control processes into day-to-day responsibilities to monitor and mitigate risk; escalates appropriately.
- Minimum of 2-4 years of related experience.
- Bachelor's degree preferred, preferably with a technology-related major, or equivalent experience.
- Previous internal or external audit experience is helpful, but not required.
- Strong analytical and problem-solving skills.
- Strong commitment to teamwork and collaboration.
- Strong written and oral communication skills.
- Certifications related to the candidate's coverage responsibilities are beneficial, but not required, such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and Certified Information Systems Security Professional (CISSP).
- Aligns risk and control processes into day to day responsibilities to monitor and mitigate risk; escalates appropriately.
- Capable of identifying, assessing and advising on risks for large-scale technology projects, IT general controls and completing IT process audits (e.g., SDLC, Change Management, Logical Security, Business Continuity/Disaster Recovery and Incident/Problem Monitoring).
- Proficiency in auditing infrastructure components is a plus (e.g., Mainframe, Unix/Linux, Windows).