Key Responsibilities - Lead the IT Audit team and support the Risk Management team in strengthening overall governance and control frameworks.
- Manage the IT internal audit function, ensuring effective risk management, regulatory compliance, and robust IT and cybersecurity controls.
- Develop and execute the annual IT audit plan, covering IT general controls, application systems, and emerging technology environments.
- Act as an independent audit advisor on major IT projects, providing expert input on system development, implementation, and control design.
- Present clear, concise, and actionable audit reports to management and the Board Audit & Risk Committee, highlighting findings and recommending improvements.
- Continuously enhance IT audit methodologies and support PRC audit reviews when required.
Requirements - Bachelor's degree in Information Technology, Finance, Accounting, Engineering, or a related discipline.
- Professional qualifications such as CISA or CISSP required; CIA or CPA is an advantage.
- Minimum 20 years of IT audit or related experience, including at least 10 years in managerial positions within sizable organizations.
- Strong knowledge of IT general controls, cybersecurity, system development processes, and leading risk frameworks (e.g., NIST, SOC 2, ISO27001).
- Practical experience with IT infrastructure, ERP systems (e.g., SAP), cloud computing, e-commerce, AI, and IoT applications.
- Excellent analytical, communication, and leadership skills, with proficiency in English, Cantonese, and Putonghua.
- Familiarity with PRC business environments is preferred.
To Apply: Please contact Krystal at 6238 3304 / for more information.