Ref: GP435-3050 Our Internal Audit Team tests the adequacy of accounting, operational and technology controls across all divisions and functions ensuring compliance with policies, procedures, standards and applicable regulations. The team consists of audit professionals focusing on financial, operational and technology audit activities. The audits for the year are scheduled, based on risk assessments and management requests. These audits work across brands and regions giving the team exposure to a number of sectors and a large variety of audit scopes and objectives. The output of our audit activity is captured in action plans and recommendations that form the basis of business improvements and initiatives.
The Role:
The job holder will support the deliver the Annual Audit Plan for technology risk and managing the governance of controls in place to comply with ISO 27001 and corporate policies without sacrificing the effective and efficient use of corporate resources. Specific responsibilities include:
- Review new systems, manuals, software, procedures, records and management controls for their adequacy to accomplish intended objectives, and recommend improvements to ensure that new initiatives achieve company objectives.
- Perform complex technical audit reviews, which require a higher level of audit expertise or skills.
- Plan and review audits in a professional manner, ensuring that major risk areas are addressed therein.
- Participate in annual risk assessment and audit planning.
- Supervise Audit Employees on a continuous basis in various ways e.g. Monthly Employees scheduling, monitoring progress of Audit reviews, etc. to ensure that audits are completed on a timely basis, in accordance with departmental standards and audit program.
- Create audit reports and present to management teams covering the output of audit activity, discussing deficiencies and recommending ways to improve and obtain management agreement to make corrective actions
Skills and Requirements:
- Bachelor degree in computing science, management information systems, engineering or accounting degree
- Professional audit / security certifications ( at a minimum one or two): CISSP, GSNA, GSEC, CISA, ISO 27001Auditor/Lead Auditor. Secondary certifications (a plus): MCSE, ITIL, Unix, RedHat, CEH, CIA
- Minimum 5 - 7 years progressive IT audit experience
- Strong working knowledge in security controls for various operating, databases, ERP systems and application systems.
- Strong working knowledge of ACL and/or other analytical tools for data analysis.
- Expert knowledge in eCommerce systems, networking system, network and internet security, and VoIP technology.
- Strong working knowledge of industry best practices in backup procedures for the different infrastructure levels, recovery procedures and disaster recovery.
- Working knowledge of change management procedures for the different levels of technology infrastructure.
- Working knowledge of ISO 27001 and PCI-DSS security standards, COBiT & Val IT.
M.H. Alshaya Co. is a leading international franchise operator for over 70 of the world's most recognized retail brands, including Starbucks, H&M, Mothercare, Debenhams, American Eagle Outfitters, P.F. Chang's, The Cheesecake Factory, Victoria's Secret, Boots, Pottery Barn, Office Depot and KidZania. The company operates over 2,500 stores across 8 divisions: Fashion & Footwear, Health & Beauty, Food Service, Optics, Pharmacy, Home Furnishings, Office Supplies and Leisure & Entertainment. Alshaya's stores can currently be found in 19 markets across the Middle East and North Africa, Russia, Turkey and Europe and the company employs more than 36,000 people from over 110 nationalities.
Skills and Requirements:
- Bachelor degree in computing science, management information systems, engineering or accounting degree
- Professional audit / security certifications ( at a minimum one or two): CISSP, GSNA, GSEC, CISA, ISO 27001Auditor/Lead Auditor. Secondary certifications (a plus): MCSE, ITIL, Unix, RedHat, CEH, CIA
- Minimum 5 - 7 years progressive IT audit experience
- Strong working knowledge in security controls for various operating, databases, ERP systems and application systems.
- Strong working knowledge of ACL and/or other analytical tools for data analysis.
- Expert knowledge in eCommerce systems, networking system, network and internet security, and VoIP technology.
- Strong working knowledge of industry best practices in backup procedures for the different infrastructure levels, recovery procedures and disaster recovery.
- Working knowledge of change management procedures for the different levels of technology infrastructure.
- Working knowledge of ISO 27001 and PCI-DSS security standards, COBiT & Val IT.
M.H. Alshaya Co. is a leading international franchise operator for over 70 of the world’s most recognized retail brands, including Starbucks, H&M, Mothercare, Debenhams, American Eagle Outfitters, P.F. Chang’s, The Cheesecake Factory, Victoria’s Secret, Boots, Pottery Barn, Office Depot and KidZania. The company operates over 2,500 stores across 8 divisions: Fashion & Footwear, Health & Beauty, Food Service, Optics, Pharmacy, Home Furnishings, Office Supplies and Leisure & Entertainment. Alshaya’s stores can currently be found in 19 markets across the Middle East and North Africa, Russia, Turkey and Europe and the company employs more than 36,000 people from over 110 nationalities. |