IT Audit Specialist

Detail

Work pattern : Full Time

Number of receptions : 1 position

Location : Bangkok(Phaya Thai)

Salary (Baht) : Negotiable

Holiday : Not specified

Working hours : 08:30 - 17:30

Other work : Not specified

Responsible

• 1. IT Audit Execution & Planning Conduct IT audits covering IT general controls (ITGC), application controls, cybersecurity, infrastructure, network security, and system development practices. Assist in preparing annual audit plans based on risk assessments and organizational priorities. Develop audit programs, test plans, and workpapers with appropriate documentation.
• 2. Risk Assessment & Internal Control Evaluation Identify IT risks, assess vulnerabilities, and evaluate the effectiveness of internal controls. Review system configurations, access management, data protection controls, and change management processes. Perform risk-based assessments on new or existing systems and emerging technologies.
• 3. Compliance & Standards Ensure compliance with internal policies, regulatory requirements, and industry standards such as ISO 27001, COBIT, NIST, and data privacy laws. Support external auditors during IT audit engagements.
• 4. Reporting & Recommendations Prepare clear, concise audit reports highlighting findings, root causes, risk impacts, and practical recommendations. Communicate results to management and monitor remediation progress. Provide guidance on improving IT process maturity and control effectiveness.
• 5. Collaboration & Continuous Improvement Work closely with IT, cybersecurity, data management, and business units to address audit issues. Stay updated on emerging technologies, cybersecurity threats, and best practices. Contribute to strengthening the organization’s internal audit methodologies and tools.

Qualification

Gender : Not specified

Age(Yr) : Unlimited

Education Level : More than Bachelor's Degree

Experience(Yr) : 2 - 5

other : Not specified

More qualification

• Bachelor’s degree in Information Technology, Computer Science, Information Systems, Cybersecurity, Accounting Information Systems, or related field.
• 2–5 years of experience in IT auditing, IT risk management, cybersecurity, or related fields. Experience with IT controls frameworks (e.g., COBIT, NIST, ISO 27001) is highly desired.
• CISA (Certified Information Systems Auditor) CISSP, CEH, ISO 27001 Lead Auditor, or related certifications Any internal audit certifications (e.g., CIA) are a plus.
• Knowledge of IT general controls, application controls, databases, networks, operating systems, and cloud environments.
• Familiarity with cybersecurity concepts, vulnerability assessments, and access controls. Experience with audit management tools or GRC platforms is an advantage.
• Strong analytical thinking and problem-solving ability. Excellent communication and report-writing skills.
• High integrity, attention to detail, and strong organizational skills. Ability to work both independently and collaboratively.
• IT Risk & Control Assessment Cybersecurity Awareness Analytical and Critical Thinking Stakeholder Communication Project & Time Management Continuous Improvement Mindset

Benefit

• Five-day work week
• Medical insurance
• Life insurance
• Performance bonus

Other Benefits

How to apply

Receive application via JOBBKK.COM

• [email protected]