IT Audit

**JOB DESCRIPTION**:
**Job overview**

We are looking for an IT Audit & Compliance (Senior/Expert/Manager) who will maintain the organization's compliance with well-known IT standards, regulatory requirements, and internal policies. This role is crucial in ensuring the Confidentiality, Integrity, and Availability of the Organization’s information systems through regular audits, documentation, risk management and communication.

**Key responsibilities**
- Understand and stay updated with IT standards, regulatory requirements, and internal policies.
- Writing, managing and maintaining core documents and processes related to ISO 27001 ISMS (Policy, Procedure, Standard, Guideline).
- Risk Management (Identification, Analysis, Evaluation, Treatment), Risk communication & support/follow the implementation of Risk controls.
- Support other teams in writing their specific documents by providing templates, detailed requirements, and reviewing their work.
- Conduct IT internal audits.
- Periodically update and communicate documentation, both regularly and on an ad hoc basis (e.g., incidents, regulatory changes).
- Prepare and deliver presentations on audit findings, recommendations, and compliance status to various stakeholders.
- Provides support, education, and training to all employees in terms of Security risk awareness within the organization.
- Ensures implementation of approved IT Security policies and compliance with all HSC employees.

**JOB REQUIREMENTS**:
**1. Educational level**
- Bachelor’s degree, College degree or Higher in Computer Science, Cyber Security, or a related technical field.

**2. Knowledge & Experiences**
- At least 4 years of experience in IT Audit/IT Risk Management/ IT compliance
- Strong understanding of IT standards and regulatory requirements (ISO 27001, GDPR, etc.)
- Experience leading and managing ISO 27001 Certification Project or equivalent
- Experience with popular Risk management frameworks like ISO 27005, NIST
- Experience conducting IT Audit as a Lead Auditor

**3. Technical skills**
- Strong written communication skills for documenting audit findings, procedures, and compliance reports.
- Strong presentation skills for delivering clear and concise information to stakeholders.
- Absolutely trustworthy with high standards of personal integrity (demonstrated by an unblemished career history, complete lack of criminal convictions etc.), and willing to undergo vetting and/or personality assessments to verify this if necessary

**4. Soft skills**
- Good written and oral communication skills.
- Ability to effectively prioritize and execute tasks in a high-pressure environment.
- Detail oriented, extremely responsive, and able to prioritize many tasks.
- Self-motivated, works well independently and with others.
- Highly self-motivated and directed.

Lương**:Thỏa Thuận**

Địa điểm: Trụ sở chính - Hồ Chí Minh

Phòng ban: Information Technology

Hạn nộp hồ sơ: 04/12 — 03/01/2025