IT Audit Manager
At Cathay Pacific, we share one common aspiration: to be the world's best airline. We believe in looking for the best in our people, in working as a team, in doing the right thing by our shareholders and our communities.
With a global team, we offer a diverse range of career choices and opportunities - in the air, on the ground; in customer service, in the office; managerial or professional roles. Our team of great people each plays a key role to deliver the quality service that we are famous for.
Highlight
Location: Hong Kong
Role Introduction
Reports to: Head of Internal Audit
Group Internal Audit’s mission is to be a high performing, engaged team, protecting and enhancing the business’s value through risk-based and independent assurance, advice and insight. The role will be responsible for:
- Assisting the Head of IT IA in managing external and internal resources in carrying out IT related audit assignments across the Cathay Pacific Group - its goals and objectives setting, resources planning and utilisation, responsibilities and deliverables; reporting on IT, compliance, cyber and data security, IT risk and regulatory and IT governance risk-related audits and reviews;
- Ensure quality auditing, risk management and consulting services are delivered in order to provide high level of assurance over all types of risks across the Group
Role Introduction
Reports to: Head of Internal Audit
Group Internal Audit’s mission is to be a high performing, engaged team, protecting and enhancing the business’s value through risk-based and independent assurance, advice and insight. The role will be responsible for:
- Assisting the Head of IT IA in managing external and internal resources in carrying out IT related audit assignments across the Cathay Pacific Group - its goals and objectives setting, resources planning and utilisation, responsibilities and deliverables; reporting on IT, compliance, cyber and data security, IT risk and regulatory and IT governance risk-related audits and reviews;
- Ensure quality auditing, risk management and consulting services are delivered in order to provide high level of assurance over all types of risks across the Group
Responsibilities
- Drives/Promotes the vision of Group Internal Audit (GIA) throughout close partnerships with management and working with the senior executives to develop a risk based audit plan for the Company
- Conducts and performs the IT risk and regulatory, IT governance and compliance and cyber and data security risk-based audits for the Group
- Provides objective assurance and independent review on the adequacy and effectiveness of the Company’s risk management and internal control system to safeguard assets, improves cyber security and guide best practices
- Assists the Head of IT Internal Audit to prepare high quality audit committee paper/reports for the Audit Committee meetings regularly; completes the annual audit plan as agreed by AC and any special reviews
- High standard of quality audits is conducted through understanding of business and risks, proper identification of issues; reports are prepared timely with high quality and issues are clearly communicated and agreed with the senior management and executives with effective recommendations and solutions
- Assist in conducting risk assessments; identifies controls in place to mitigate identified risks and opportunities for improvements
- Perform integrated business audit with Finance & Operation internal audit team, as appropriate
- Conducts and performs the IT risk and regulatory, IT governance and compliance and cyber and data security risk-based audits for the Group
- Provides objective assurance and independent review on the adequacy and effectiveness of the Company’s risk management and internal control system to safeguard assets, improves cyber security and guide best practices
- Assists the Head of IT Internal Audit to prepare high quality audit committee paper/reports for the Audit Committee meetings regularly; completes the annual audit plan as agreed by AC and any special reviews
- High standard of quality audits is conducted through understanding of business and risks, proper identification of issues; reports are prepared timely with high quality and issues are clearly communicated and agreed with the senior management and executives with effective recommendations and solutions
- Assist in conducting risk assessments; identifies controls in place to mitigate identified risks and opportunities for improvements
- Perform integrated business audit with Finance & Operation internal audit team, as appropriate
Requirements
- Degree from reputable institution and professional IT auditing qualification such as CISA or equivalent designation
- Minimum 8 years and preferably with broad IT Audit experience in internationally recognized accounting firms or in-house roles
- Good knowledge of airline operations and related regulatory requirement
- Strong technical knowledge of risk and control in various IT domains such as IT infrastructure, Agile software development, as well as other key areas including Digital transformation, Project management, Information security and Data management
- Good understanding of emerging technologies and associated risks (including Cloud, Cybersecurity, DevOps and AI)
- Hands on experience in any of data analytics and business intelligence tools such as Power BI, QlikView, Alteryx, Python and O365 etc. is a definite asset
- Strong analytical skills, and ability to work independently and in a matrix and remote environment
- Strong interpersonal, communication and presentation skills, including managerial courage, dealing with ambiguity
- A team player who is self-initiated, independent and able to meet tight schedules
- Ability to create and maintain good working relationships with teammates and all levels of staff members from various business units
- CISM, CISSP, CPA and/or CIA preferred
- Fluent in writing and speaking in English and in Chinese as a bonus
- Occasional duty travel will be required (up to 30%)
- Minimum 8 years and preferably with broad IT Audit experience in internationally recognized accounting firms or in-house roles
- Good knowledge of airline operations and related regulatory requirement
- Strong technical knowledge of risk and control in various IT domains such as IT infrastructure, Agile software development, as well as other key areas including Digital transformation, Project management, Information security and Data management
- Good understanding of emerging technologies and associated risks (including Cloud, Cybersecurity, DevOps and AI)
- Hands on experience in any of data analytics and business intelligence tools such as Power BI, QlikView, Alteryx, Python and O365 etc. is a definite asset
- Strong analytical skills, and ability to work independently and in a matrix and remote environment
- Strong interpersonal, communication and presentation skills, including managerial courage, dealing with ambiguity
- A team player who is self-initiated, independent and able to meet tight schedules
- Ability to create and maintain good working relationships with teammates and all levels of staff members from various business units
- CISM, CISSP, CPA and/or CIA preferred
- Fluent in writing and speaking in English and in Chinese as a bonus
- Occasional duty travel will be required (up to 30%)
Salary
Negotiable
Benefits
Please Sign in to view relevant information
Location
Validity
Expired