it audit associate director.

The individual will provide management and the Board with an objective, independent assessment of the internal control systems through the planning and execution of the audit assignments. The individual will also add value to management by providing appropriate business-oriented recommendations. He/she will assist the Head of IT Audit with delivery of the overall audit plan, reporting to committees and management, and supervising junior audit staff.

Roles and Responsibilities:

1. Plan and perform audit activities within China, evaluate the adequacy of Information System related controls according to established schedule and quality requirements.
2. Prepare audit reports and lead discussion of issues and remedial action plans with the appropriate levels of management.
3. Provide professional advice and insights to management to enable informed management decisions.
4. Help identify key risks at the local level for each entity considering the relevant strategies and business environment.
5. Help develop the annual audit plan considering the key risks identified and regulatory requirements.
6. Assist in the preparation of the annual audit plan and schedules and Audit Committee reports.
7. Coordinate and co-operate with external auditors to leverage review work done so as to minimize interruption to business units. Partner with financial auditors to assess application IT controls related to key business processes.
8. Facilitate issuance of audit reports to management.
9. Follow-up outstanding audit issues and monitor timely completion of agreed remedial actions by management.
10. Liaise with the control community and other members of the company to contribute to the implementation of an effective and efficient system of internal control.
11. Develop rapport with business unit management through regular communication of changes in business operations, emerging risks and potential issues, etc.
12. Proactively develop junior staff through coaching, training and timely feedback, take corrective actions to address performance issues (if any).
13. Perform other responsibilities and duties periodically assigned by supervisor to meet operational and/or other requirements.

Job Requirements

1. University degree in IT or Computer Science (or equivalent)
2. Minimum 10-12 years of IT audit, IT operations or solid technology risk management experience with good understanding on at least one of the following areas:
   1. System Development
   2. Cybersecurity
   3. Network Security
   4. Platform and Database Security
   5. Cloud Computing
   6. Endpoint Security
   7. IT Operations
3. Certificate holder of Certified Information Systems Security Professional (CISSP)/ Certified Information Systems Auditor (CISA)/ Certified Information Security Manager (CISM)
4. Strong understanding on IT controls and risks
5. Good command of both oral and written English and Chinese
6. Knowledge with audit tools and other software such as ACL (data analytic tools) and MS Office
7. Good team player who is committed to achieve results
8. Ability to work under pressure and meet milestones within time, cost and quality constraints
9. Strong analytical, written/verbal communication, presentation, interpersonal, and relationship building skills
10. Solid problem-solving skills, ability to analyze complex data, identify core issues, investigate, evaluate and reach appropriate conclusions
11. Ability to adapt to changes quickly and multi-task
12. Willing to travel if necessary