Lead IT Auditor

Job Description

Job description / Role

We are Aramco

Our high-performing employees are drawn by the challenging and rewarding professional opportunities we offer, and by the opportunity to make a positive difference through their work. At Saudi Aramco, we give our people the opportunity to do the work they dreamed of doing and support them in achieving more than they thought possible.

Job Purpose

We are seeking an in-charge IT auditor to join the Information Systems Audits Division within Internal Auditing, to be based in our corporate headquarters in Dhahran, Saudi Arabia, with expertise in infrastructure, network and cyber security.

Internal Auditing is an independent and objective assurance and consulting activity designed to add value and improve the operations of Saudi Aramco. Internal Auditing helps the organization to accomplish its objectives by bringing a systematic and disciplined approach to evaluate and improve the effectiveness of the organization\’s risk management, control, and governance processes. Internal Auditing provides members of management and the Board of Directors with analyses, recommendations, and information concerning the activities reviewed.

The Information Systems Audits Division is responsible for performing 1) technology audits, and 2) supporting business integrated audits in testing automated controls.

Responsibilities

You will be required to perform the following:

Establish the objective and scope of the audit engagement.

Identify key risks and controls within the business and operational processes under review.

Develop comprehensive risk-based audit programs.

Execute risk-based audit procedures in alignment with company policies and international standards. Prepare audit reports.

Deliver presentations to client management at the audit opening and closing meetings.

Provide on-the-job training and mentoring to less experienced staff.

Evaluate the performance and capabilities of the assisting staff auditors.

Provide assurance and consulting activities on internal controls as requested.

Provide on-the-job training and mentoring to less experienced staff.

Act as an Internal Auditing SME for the area of network and cyber security.