Technology Internal Audit Lead

Job Specifications:

• Engage actively in end-to-end IT audit engagements, including planning, scoping, and execution of risk-based technology audits across IT infrastructure, core networks, applications, cybersecurity, data governance, and emerging technologies.
• Drive end-to-end technology audit cycle , ensuring effective risk assessment, control evaluation, and delivering clear, actionable insights to senior management.
• Develop compliance models and business improvement plans and programs with process owners around Technology domains i.e., IT & Core Network Infrastructure , Cybersecurity , Applications & Business Systems, Data & Governance, Continuity & Resilience and oversee the implementation.
• Provide direction and oversight in applying Risk & Audit Frameworks such as ISO 27001, NIST CSF, COBIT 2019, ITIL v4, PCI DSS, CSA Cloud Controls Matrix, Bahrain PDPL, and other internal audit standards.
• Prepare documents and presents audit findings in a clear and structured format, ensuring reports are concise, actionable, and tailored for senior management and board-level audiences.
• Translate complex technical findings (e.g., red/blue team results, misconfigurations, VAPTs) and high-risk audit outcomes into executive-ready assurance insights and practical remediation roadmaps.
• Collaborate with Technology and Business leaders to discuss and align audit recommendations.
• Act as a trusted advisor to senior management, presenting clear risk analysis, remediation strategies, and recommendations for strengthening the overall technology control environment.

Qualification & Experience:

• Bachelor’s degree in Computer Science/Management Information Systems from a recognized university
• 8–10 years of overall audit experience around Technology Audit with 3 -5 yrs of supervisory experience
• Mandatory Professional Certification: CISA
• Preferred/Value-Add Professional Certifications: CISM, CISSP, CRISC, ISO 27001 Lead Auditor, CDPSE/CIPM (IAPP), Cloud Security (AWS/Azure/GCP)
• Additional exposure to penetration testing, threat-hunting, and digital forensics is an advantage.

Role Impact:

• The Technology Internal Audit Lead role plays a critical part in ensuring the integrity, security, and efficiency of our organization's technological infrastructure.
• By assessing risks and evaluating the effectiveness of technology controls, this position helps safeguard company assets and enhances operational efficiency.
• The insights provided by the Technology Internal Audit Lead contribute to strategic decision-making, ensuring compliance with industry standards and regulations.
• Furthermore, this role supports the continuous improvement of technology processes and systems, promoting a culture of risk awareness and proactive problem-solving within the organization.

Key Job Competencies:

• Technical Proficiency : Deep understanding of IT systems, networks, and infrastructure, including cybersecurity principles and practices.
• Analytical Skills : Ability to analyze complex data sets and draw meaningful conclusions to identify potential risks and areas for improvement.
• Communication Skills : Strong verbal and written communication abilities to effectively convey audit findings to stakeholders at all levels.
• Problem-Solving : Capability to develop innovative solutions to address identified issues and enhance technology controls.
• Attention to Detail : Meticulous approach to evaluating systems and processes to ensure thoroughness and accuracy in audit assessments.
• Regulatory Knowledge : Familiarity with relevant laws, regulations, and standards related to technology and cybersecurity audits.