IT/Cyber Controls Tester

• Establish and enhance control frameworks
• Conduct testing of IT and Cyber controls.
• Manage issues and evaluate controls.
• Review remediation activities and testing outcomes.
• Evaluate the effectiveness of testing.
• Collaborate with control owners to define requirements
• Helping to define, implement and embed an assurance plan.
• Working closely with security office, ensuring alignment on control assurance management methodology, and practices.
• Control objectives to be reviewed with control owners for technical and operational feasibility, objectives to be amended or approved accordingly.
• Conduct assessments of internal key IT and security controls and processes to identify deficiencies, deviations, and compliance gaps including performing control walkthroughs and testing against relevant IT and Security Control Standards.
• Perform internal risk and control assurance using the assurance methodology to determine control effectiveness, ensuring compliance to internal policies, standards/processes, best practices and industry standard and frameworks.
• Complete documentation of control testing and reporting for senior management review.
• Work with relevant stakeholders in the 1st line team to identify appropriate remedial actions, for issues identified through testing.
• Support the definition of a control library, creation and review of controls ensuring alignment to internal policies and external frameworks e.g. CRI, ISO, NIST, ISAE.
• Perform internal control assessments and audits.
• Development of appropriate assurance internal documentation.

#LI-DNI