Vertical Head Information Systems (IS) Audit
Role Profile: Vertical Head Information Systems (IS) Audit
The Vertical Head of IS Audit is a senior leadership position responsible for the end-to-end strategy, development, and execution of Information Systems, IT Infrastructure, and Information Security audits across the organization. This role ensures the proactive identification and mitigation of digital risks in a complex, large-scale environment.
Core Objectives
ā¢ Strategic Leadership: Develop a comprehensive IS Audit strategy and annual plan aligned with organizational goals, digital maturity, and regulatory requirements.
ā¢ Risk Mitigation: Proactively identify and manage risks across Cyber Security, Cloud, Data Privacy, and emerging digital technologies.
ā¢ Compliance & Standards: Ensure audit coverage meets internal policies, professional auditing standards, and multi-regulator legal frameworks.
ā¢ Technological Integration: Drive the use of advanced data analytics, forensic techniques, and automated testing to enhance audit effectiveness.
Key Responsibilities
1. Audit Strategy & Execution
ā¢ Massive Scale Testing: Oversee the testing of 3,000+ controls covering IT applications and infrastructure processes.
ā¢ Application & Process Reviews: Conduct reviews of 1,500+ application controls and 1,500+ process controls to identify vulnerabilities and recommend systemic improvements.
ā¢ Specialized Audits: Lead high-impact audits (10+) in Cyber Security, Cloud, and Network Security, plus 200+ data sensitivity reviews focusing on the full data lifecycle.
ā¢ Third-Party Assurance: Audit data centers and third-party partners/vendors to ensure SLA compliance and robust data leakage prevention.
2. Continuous Monitoring & Innovation
ā¢ Automation: Implement a continuous monitoring framework by developing 5,000+ automated tests for real-time risk assessment.
ā¢ Dynamic Response: Identify risk "hotspots" and execute unplanned investigations based on regulatory directives or board requests.
ā¢ Trend Alignment: Keep the organization at the forefront of emerging audit trends and digital technology risks.
3. Stakeholder & People Management
ā¢ Engagement: Partner with Business, Technology, and Functional leaders to elevate the maturity of the control environment.
ā¢ Reporting: Deliver high-level communication and reporting to regulators, Board Committees, and Senior Management.
ā¢ Team Leadership: Recruit, nurture, and develop a specialized, high-performing IS Audit team capable of handling complex forensic and technical reviews.
Scope of Coverage
The role monitors a vast technical landscape, including:
ā¢ Security: Cyber, Cloud, Network, Data, and Endpoint Security.
ā¢ Operations: IT Disaster Recovery (DR), Business Continuity (BCP), Change Management, and Incident Management.
ā¢ Infrastructure: Database & OS Management, Data Centers, and Logical/Physical Access.
ā¢ Compliance: Data Privacy, Regulatory Circulars, and Project Management.
Apply Now
Apply Now
The Vertical Head of IS Audit is a senior leadership position responsible for the end-to-end strategy, development, and execution of Information Systems, IT Infrastructure, and Information Security audits across the organization. This role ensures the proactive identification and mitigation of digital risks in a complex, large-scale environment.
Core Objectives
ā¢ Strategic Leadership: Develop a comprehensive IS Audit strategy and annual plan aligned with organizational goals, digital maturity, and regulatory requirements.
ā¢ Risk Mitigation: Proactively identify and manage risks across Cyber Security, Cloud, Data Privacy, and emerging digital technologies.
ā¢ Compliance & Standards: Ensure audit coverage meets internal policies, professional auditing standards, and multi-regulator legal frameworks.
ā¢ Technological Integration: Drive the use of advanced data analytics, forensic techniques, and automated testing to enhance audit effectiveness.
Key Responsibilities
1. Audit Strategy & Execution
ā¢ Massive Scale Testing: Oversee the testing of 3,000+ controls covering IT applications and infrastructure processes.
ā¢ Application & Process Reviews: Conduct reviews of 1,500+ application controls and 1,500+ process controls to identify vulnerabilities and recommend systemic improvements.
ā¢ Specialized Audits: Lead high-impact audits (10+) in Cyber Security, Cloud, and Network Security, plus 200+ data sensitivity reviews focusing on the full data lifecycle.
ā¢ Third-Party Assurance: Audit data centers and third-party partners/vendors to ensure SLA compliance and robust data leakage prevention.
2. Continuous Monitoring & Innovation
ā¢ Automation: Implement a continuous monitoring framework by developing 5,000+ automated tests for real-time risk assessment.
ā¢ Dynamic Response: Identify risk "hotspots" and execute unplanned investigations based on regulatory directives or board requests.
ā¢ Trend Alignment: Keep the organization at the forefront of emerging audit trends and digital technology risks.
3. Stakeholder & People Management
ā¢ Engagement: Partner with Business, Technology, and Functional leaders to elevate the maturity of the control environment.
ā¢ Reporting: Deliver high-level communication and reporting to regulators, Board Committees, and Senior Management.
ā¢ Team Leadership: Recruit, nurture, and develop a specialized, high-performing IS Audit team capable of handling complex forensic and technical reviews.
Scope of Coverage
The role monitors a vast technical landscape, including:
ā¢ Security: Cyber, Cloud, Network, Data, and Endpoint Security.
ā¢ Operations: IT Disaster Recovery (DR), Business Continuity (BCP), Change Management, and Incident Management.
ā¢ Infrastructure: Database & OS Management, Data Centers, and Logical/Physical Access.
ā¢ Compliance: Data Privacy, Regulatory Circulars, and Project Management.
Apply Now
Apply Now