The position is primarily responsible for leading audits focused on IT governance, regulatory compliance, and IT risk management, ensuring alignment with industry frameworks (COBIT, ITIL, ISO 27001) and regulatory requirements while strengthening the organization's IT control environment.
Duties And Responsibilities
- Experienced in reviewing IT policies, standards, and procedures to assess adequacy and effectiveness and ensure alignment with organizational and regulatory requirements
- Skilled in assessing IT risk management processes and their alignment with business objectives to strengthen risk mitigation and governance practices
- Knowledgeable in evaluating compliance with regulatory requirements (e.g., BSP, Data Privacy Act, internal policies) to ensure adherence and reduce compliance risk exposure
- Proficient in testing IT governance and control activities (e.g., risk assessments, policy enforcement) to validate control design and operating effectiveness
- Analytical in identifying control gaps, root causes, and recommending process improvements to strengthen the IT control environment and enhance operational effectiveness
- Effective in preparing audit reports and presenting findings to management to support decision-making and timely remediation actions
Qualifications
- Bachelor's degree in Accounting, Information Systems, Information Technology, or related field
- Has 5–6 years of experience in internal audit, IT audit, IT risk, compliance, or governance
- Strong knowledge of IT governance frameworks (COBIT, ITIL) and regulations (e.g., BSP, Data Privacy Act)
- Good understanding of risk management, internal controls, and audit methodologies (IIA, ISACA)
- Possession of CISA, CRISC, or CGEIG is an advantage
- Willing to work in Makati
