IT Auditor (UP to SEO)

Job Description

Title: IT Auditor (UP to SEO)

Company Name: Bank Asia PLC

Vacancy: --

Location: Dhaka

Salary: Negotiable

Experience:
∎ 5 to 8 years
∎ The applicants should have experience in the following business area(s):Banks

Published: 20 Nov 2024

Education:
∎ Bachelor of Science (BSc) in Computer Science & Engineering
∎ B. Sc. In Computer Science & Engineering/ Computer Science/ Information Technology/ Information Security/ Cyber Security, etc. having no Third class/Division in academic career.
∎ Relevant Professional Certification from ISACA (CISA/ CISM, CRISC/ CGEIT/), ISC2 (CISSP/ CCSP), IIA, EC-Council (CEH/ CHFI/ CCISO/ CPENT), ISO 27001 (ISMS) Lead Auditor/ ISO 22301 (BCMS) Lead Auditor/ Lead Implementer, RHCE, ITIL, etc. will be an added advantage.

Requirements:

Additional Requirements:

Responsibilities & Context:
∎ Implement Information Technology audits for all the relevant technical systems.
∎ Knowledge of audit procedures and technical security and control standards
∎ Solid understanding of IT and Cybersecurity controls (e.g., Configuration Management, Network Security, Identity Access and Authentication)
∎ Skills as needed to perform testing of design and operational effectiveness of information security and Cybersecurity controls (e.g., Penetration Testing, SecOps, Security Information and Event Monitoring, Data Protection, Vulnerability Management, Insider Threat)
∎ Understanding of emerging technologies (e.g., Containers, Kubernetes, CI/CD) and cloud infrastructure (e.g., AWS, MS Azure) is a plus
∎ Skills as needed to perform testing of design and operational effectiveness of application controls (e.g., Interface and Application Security Controls)
∎ Knowledge of systems software applications and databases
∎ Compliance assessment of regulatory guidelines, policies, and processes.
∎ Monitor IT general control and application control for its effectiveness.
∎ Information Technology and Information Security Risk Assessment.
∎ Risk Assessment of ADC channels, digital banking, and payment gateways.
∎ Keep updated banking knowledge, Bangladesh Bank guidelines, circulars, auditing standards, changing/ amendment of law/regulations, ISO, NIST, OWSAP, etc.
∎ Identify significant risk areas and/or control weaknesses and inform the management.
∎ Ensure that Audit IT systems, platforms, and operating procedures comply with the established corporate standards for efficiency, accuracy, and security.
∎ Analyze, assess and evaluate the risk of core banking, card management, and other satellite and middleware applications from security and regulatory compliance perspective.
∎ Technical assessment of information security solutions, like SIEM, PAM, SOAR, DLP, Web Gateway, Firewall, MDM, etc.
∎ Technical assessment of payment channels like ATM, POS, EFT, etc.
∎ Perform data analysis with appropriate CAAT.
∎ Sound reporting, reviewing and presentation skills.
∎ Implement Information Technology audits for all the relevant technical systems.
∎ Knowledge of audit procedures and technical security and control standards
∎ Solid understanding of IT and Cybersecurity controls (e.g., Configuration Management, Network Security, Identity Access and Authentication)
∎ Skills as needed to perform testing of design and operational effectiveness of information security and Cybersecurity controls (e.g., Penetration Testing, SecOps, Security Information and Event Monitoring, Data Protection, Vulnerability Management, Insider Threat)
∎ Understanding of emerging technologies (e.g., Containers, Kubernetes, CI/CD) and cloud infrastructure (e.g., AWS, MS Azure) is a plus
∎ Skills as needed to perform testing of design and operational effectiveness of application controls (e.g., Interface and Application Security Controls)
∎ Knowledge of systems software applications and databases
∎ Compliance assessment of regulatory guidelines, policies, and processes.
∎ Monitor IT general control and application control for its effectiveness.
∎ Information Technology and Information Security Risk Assessment.
∎ Risk Assessment of ADC channels, digital banking, and payment gateways.
∎ Keep updated banking knowledge, Bangladesh Bank guidelines, circulars, auditing standards, changing/ amendment of law/regulations, ISO, NIST, OWSAP, etc.
∎ Identify significant risk areas and/or control weaknesses and inform the management.
∎ Ensure that Audit IT systems, platforms, and operating procedures comply with the established corporate standards for efficiency, accuracy, and security.
∎ Analyze, assess and evaluate the risk of core banking, card management, and other satellite and middleware applications from security and regulatory compliance perspective.
∎ Technical assessment of information security solutions, like SIEM, PAM, SOAR, DLP, Web Gateway, Firewall, MDM, etc.
∎ Technical assessment of payment channels like ATM, POS, EFT, etc.
∎ Perform data analysis with appropriate CAAT.
∎ Sound reporting, reviewing and presentation skills.

Workplace:
∎ Work at office

Employment Status: Full Time

Job Location: Dhaka

Company Information:
∎ Bank Asia PLC
∎ Bank Asia Tower, 32 & 34, Kazi Nazrul Islam Avenue, Karwan Bazar, Dhaka
∎ Bank

Address::
∎ Bank Asia Tower, 32 & 34, Kazi Nazrul Islam Avenue, Karwan Bazar, Dhaka
∎ Bank

Read Before Apply: Please apply only who are fulfilling all the requirements of this job

Application Deadline: 30 Nov 2024

Category: Bank/Non-Bank Fin. Institution