Tech Auditor

Technology Auditor (Senior / Lead Level) – Financial Services

About the Organisation

A leading multinational banking institution with a strong presence across Asia and a well-established global footprint. The organisation is known for its focus on digital transformation, robust risk management practices, and continuous investment in cybersecurity and technology innovation to safeguard its financial ecosystem.

Job Overview

The Technology Auditor will be responsible for delivering independent and risk-based technology audits across the bank’s IT infrastructure, applications, cloud environments, and cybersecurity domains. The role involves evaluating the design and effectiveness of controls, identifying key technology risks, and providing actionable recommendations to strengthen the bank’s overall risk posture.

This role may operate as a Lead Reviewer on complex or high-risk audits, providing direction to team members and ensuring audit engagements are delivered to high-quality standards in line with internal audit methodology and regulatory expectations.

Key Responsibilities

• Execute the approved audit plan across assigned technology and operational areas.
• Lead or participate in complex, high-risk audits as Lead Reviewer or Team Member.
• Evaluate the design and operating effectiveness of IT and security controls, and assess the business impact of control deficiencies.
• Provide clear, risk-based recommendations and track remediation actions with stakeholders.
• Conduct end-to-end audit engagements, including planning, fieldwork, reporting, and issue validation.
• Support the development and execution of data analytics to enhance audit coverage and insights.
• Identify emerging technology, cybersecurity, and industry risks and assess their impact on the organisation.
• Supervise and guide audit team members, including coaching and on-the-job training.
• Maintain strong stakeholder relationships and effectively communicate audit findings to management.
• Continuously improve audit methodologies through automation, data analytics, and adoption of best practices.
• Ensure compliance with internal audit standards and regulatory requirements.

Key Requirements

• Minimum 8 years of experience in Technology Audit, IT Security, or related fields.
• Strong understanding of cybersecurity principles and enterprise IT environments.
• Hands-on experience with Wintel, Linux, and Unix systems.
• Strong knowledge of network security concepts and operational controls.
• Experience in virtualisation technologies (e.g., VMware environments).
• Proven experience in cloud security and audit across AWS, Azure, and Google Cloud Platform.
• Experience conducting mobile application security assessments (Android and iOS).
• Strong understanding of web application security (Java, JavaScript, HTML, XML, APIs, etc.).
• Experience leveraging data analytics tools (e.g., ACL, Qlik Sense, Tableau or similar).
• Strong analytical thinking with the ability to assess complex technical and risk scenarios.
• Excellent communication and stakeholder management skills, including senior management exposure.
• Ability to work independently and also lead audit teams when required.
• Bachelor’s degree or equivalent professional qualification in IT, Computer Science, or related discipline.

Professional Certifications (Required / Preferred)

Required:

• CISSP or CISA
• CCNA or equivalent networking certification
• VCP (VMware Certified Professional) or equivalent

Advantageous:

• OSWE / GWAPT / GIAC or other recognised web application security certifications
• OWASP-related security certifications or training

Consultant