IT Auditor Lead

Jakarta, Indonesia | Risk & Compliance | Full-time | Partially remote

Apply

Key Responsibilities

  • Maintain the quarterly IT internal audit plan, ensuring alignment with key risks and organizational priorities.

  • Lead end-to-end IT audit engagements, from planning, fieldwork, to reporting.

  • Identify and assess IT-related risks, including cybersecurity, data privacy, operational technology risks, and emerging tech risks.

  • Evaluate the effectiveness of IT controls across applications, infrastructure, cybersecurity, cloud environments, and data governance.

  • Review system configurations, access controls, change management, and IT operations for potential risks and control gaps.

  • Conduct annual audits for compliance with ISO 27001 and other relevant standards or regulations, as well as special audits (e.g., investigations, security incidents, and ad hoc assignments).

  • Drive and monitor the implementation of IT audit recommendations across relevant teams (Engineering, Product, InfoSec, IT Ops).

  • Develop and maintain audit reports, issue logs, dashboards, and management updates on IT control health.

  • Provide early warning indicators on emerging IT risks, system vulnerabilities, or deviations from expected controls.

  • Support awareness initiatives related to IT governance, cybersecurity, and internal controls.

Requirements:

  • 3–6 years of experience in IT Audit, IT Risk, Cybersecurity, or Technology Assurance.

  • Strong understanding of IT general controls (ITGC), application controls, cloud environments, cybersecurity frameworks, and technology risk assessment.

  • Familiarity with standards such as ISO 27001, SOC 2, NIST, COBIT, or similar frameworks.

  • Strong technical foundation with familiarity in SQL, JavaScript, and Python for data analysis or system review.

  • Relevant certifications such as CISA, CRISC, ISO 27001 Lead Auditor/Implementer are a strong plus.

  • Strong communication, coordination, interviewing, and issue-challenging skills when dealing with technical teams.

  • Highly detail-oriented, analytical, and comfortable managing multiple concurrent audit or review activities.

Share this opening with friends