IT / IS and Cybersecurity Audit Officer at AIICO Insurance

Responsibilties
Cybersecurity Audit:

• Review and investigation of system-related customer complaints/frauds to prevent reoccurrence and improve system security.
• Proactive and continuous research into the latest IT/system related vulnerabilities and threats that may exist and recommend appropriate counter measures promptly.
• Perform security assessment for newly developed applications.
• Conduct periodic penetration testing of the parent’s and subsidiary companies’ information asset.

IT/IS Audit Responsibilities:

• Support in the development of a robust internal audit framework and policies by benchmarking industry best practices and consolidate technical and non-technical risks.
• Continuous monitoring and evaluation of the parent’s and subsidiary companies’ enterprise information systems for risks, IT infrastructure, new vulnerabilities and control of weakness that may lead to systems disruption.
• Participating in periodic audit of the information technology to improve the parent’s and subsidiary companies’ risk, governance, and control requirements.
• Evaluate the efficiency and effectiveness of the system and other controls specifically as they relate to the management of IT risk as well as the definition, design, and execution of the company's IT initiatives.
• Appraise the effectiveness and independence of system program change controls, system, and security administration, monitoring and incidence response activities, and general information system controls over a variety of applications.
• Appraise the effectiveness of the architecture of web-based application systems, including communication protocols on system security and performance.
• Appraise the effectiveness of the architecture of client server-based LAN Accounts.
• Audit software deployment, access controls and information technology systems and infrastructure.
• Support the development and execution of the company’s annual audit work plan.
• Providing information systems risk assurance audit advisory and consultative services on to all within and outside the company.

Audit Execution, Assurance & Reporting:

• Provide assurance on the parent’s and subsidiary companies’ revenue and expense line.
• Prepare reports for timely submission of reports to the concerned audited entities and follow-up regarding action taken on audit observations.
• Develop and implement tools to analyze data for improving audit efficiency and effectiveness (including for risk assessments).
• Maintain a database of all audit data, reports, queries, and other related documentation.
• Conduct investigations and spot checks as required.

Qualifications

• Interested candidates should possess an B.Eng / BSc Degree with 0 - 4 years experience.