Head Information Systems Audit

Key Accountabilities

1. Develops the audit plan for the areas under his / her responsibility, taking into account, the general risk environment, the strategies of the Group, as well as the relevant regulatory requirements.
2. Assigns, coordinates, and supervises audit engagements scheduled according to the audit plan, as well as ad hoc or regulatory requests.
3. Reviews the work and preliminary reports for the audits carried out under his / her areas of responsibility and ensures the availability of sufficient evidence to support the findings and conclusions arising from the audit work.
4. Organizes the work, monitors and evaluates the performance of the Information Systems (IS) Auditors under his / her responsibility, providing feedback to them and relevant recommendations to his / her Manager, aiming to develop further their skills, enhance efficiency and deliver the objectives of his / her Department.
5. Participates in ad hoc audit assignments, projects and investigations focusing on the areas of Information Systems, Digital Services and Products and Data Analytics. Offers advisory services relative to the aforementioned areas.
6. Supports the development and adoption of specialized audit programs and analytical methods, by using a variety of audit techniques to assess technologies such as CAATs, code and configuration reviews, vulnerabilities testing, data analytics and scripting, amongst other audit, security, monitoring and data analysis software and tools.
7. Evaluates cross-functional or system-specific processes and frameworks such as IT Governance, application development lifecycle, information security management system, network architecture & design, cloud technology, DevOps, in order to determine whether they support the Group's strategies and comply with best practices, regulatory and legal requirements.
8. Participates in the continuous risk assessment process by remaining current with industry trends and emerging risks, consulting with internal and external business partners, identifying and assessing risks within the technology environment.
9. Works with the Department's Management to develop and optimise processes, applications and systems and assists in implementing and/ or adopting IS audit and assurance standards and frameworks (IIA, ISACA etc.). Actively assists in the improvement of the processes and the technology environment of Internal Audit.

Academic/ Professional Qualifications

• Bachelor's Degree in Computer Science, Management Information Systems, Information Security or other related subject.
• Master's degree or extra professional qualification/ certifications in a related subject will be considered as an advantage.
• Professional certification (CISA/ CISM, GSNA, ITIL, CISSP, GSNA or equivalent accreditation) will be considered as an advantage.

Experience and Skills

• At least 5-7 years of experience in working in information systems auditing, information security, risk management and controls, or related area, with emphasis in technology and/ or digital services/ products.
• At least 3-5 years of experience in administration and supervision of teams, ensuring the achievement of determined goals.
• Prior experience and/ or knowledge in data science and data analytics techniques and tools will be considered as an advantage.
• Prior experience in IT Project Management will be considered as an advantage.
• Prior financial industry experience will be considered as an advantage.
• Software development experience, code reviews and knowledge on application and systems interfaces (web, APIs) will be considered as an advantage.
• Knowledge of auditing, risk management, IT and security standards and frameworks (ISO, ITIL, COBIT, COSO, NIST, SANS amongst others).
• Ability to assess business processes and technology, identify risks and evaluate controls.
• Familiarization with relevant laws and regulations (e.g. GDPR, PSD2, ECB directives)
• Advanced skills in MS Excel, MS Word and MS PowerPoint.
• People management skills, including the assignment and monitoring of working activities, the development of skills/ competencies and the evaluation of performance.
• Ability to manage time, workload and multiple tasks/projects simultaneously, balancing priorities and deliverables.
• Excellent written and verbal communication skills in both Greek & English.
• Ability to work well within a team and participate in inter-departmental projects.
• Adequate focus on personal professional growth relevant to taking on more challenging assignments and proactively seeking relevant education and training opportunities.
• Structured and critical thinking.
• Excellent analytical and problem-solving skills.
• Ability to take initiatives and make decisions.

To apply for this position, please click the 'Apply' button and follow these steps:

• Registration
• Profile submission:
  • Electronic submission of personal /academic/ professional and other data
  • "Release" of the profile
• Application for specific vacancies, through "Employment Opportunities" section:
  • Job Search (the position code is HISAUD22V2)
  • Start
  • Select Job
  • Apply
  • Send Application (top, right hand side)
  • Send Application