IT Internal Auditor

  4. IT Internal Auditor

FIMBank is an international trade finance bank with an international network of offices spanning five continents. The Bank is headquartered in Malta, is listed on the Malta Stock Exchange, and regulated by the Malta Financial Services Authority.  We are seeking to recruit an IT Internal Auditor to join our Internal Audit Department.

Job Description

Reporting to the Head of Internal Audit the main responsibility of the IT Internal Auditor is to perform independent reviews and audits of areas relating to Information Technology within the FIMBank Group, by following the risk-based auditing methodology as directed by Internal Audit Management. Such reviews and audits involve identifying the area’s risk profile and assessing the effectiveness of the related internal control framework.

In particular, the IT Internal Auditor shall be responsible for:

  • Assisting Lead Auditors in carrying out reviews and audits of areas involving Information Technology (namely infrastructure, security, processes and IT operations) both at IT Department and User levels of the FIMBank Group;
  • Performing (or assisting outsourced specialists in performing) vulnerability assessments and/or penetration testing of the Group’s networks, systems and web-based portals/services;
  • Reporting to Internal Audit Management the adequacy of policies, programmes and activities of the Group’s Information Technology function;
  • Assisting Lead Auditors, as required by Internal Audit Management, in carrying out reviews and audits on FIMBank Group’s various auditable units and processes as defined in the Group’s Audit Universe;
  • Ensuring that working methodologies as detailed in the Group’s approved Internal Audit documented framework (Internal Audit Charter, Code of Ethics, Manual & Working Guidelines) are invariably adhered to, thus ensuring that audits are performed on a risk-based approach, at the same time assuring departmental efficiency through proper time management;
  • Assisting Lead Auditors in reporting on the findings identified through the audit reviews, in making the necessary recommendations as well as in monitoring/following up Management’s response and implementation;
  • Assisting Lead Auditors in reporting to Management on areas needing improvement, thus ensuring an effective risk control environment, assets are safeguarded and information is protected;
  • Providing advice to Management through Internal Audit Management on any activities of the Group as part of Internal Audit’s advisory role;
  • Performing remote monitoring and continuous auditing tasks (including ACL setup) on an ongoing basis, taking the necessary corrective actions when potential issues or red flags are identified;
  • Conducting any other reviews or tasks as requested by Internal Audit Management on any activities of the Group as long as these do not compromise the independence or objectivity of the IT Internal Auditor;
  • Assisting with the Department’s general administrative duties, including ongoing timesheet reporting and maintenance of the Department’s internal audit system (AutoAudit); and
  • Identifying training requirements in line with the IT Internal Auditor’s defined responsibilities.

Knowledge, Skills and Abilities

  • Minimum of 3 years relevant experience of IT Internal Audit practices and methodology;
  • Awareness of Banking Products & Operations and the Banking Regulatory Framework would be considered an asset;
  • Internal Auditing Qualification (CIA or equivalent);
  • IT Internal Auditing Qualification (CISA or equivalent), and
  • Although not required to apply for this post, an Ethical Hacking Qualification (e.g. CEH) and any Technical IT/Information Security Qualifications (e.g. CISSP, CISM, CSX, MCSA) would be considered an asset.

How to Apply

Interested applicants are to submit their CV along with a covering letter to:

recruitment@fimbank.com 

All applications will be acknowledged and treated in the strictest confidence.