Manager, IT Audit - (Commercial Banking)
about the company.
Our client is a well-regarded local commercial bank with a long-standing history of excellence in Hong Kong. The bank offers a collaborative and professional working environment that values technical expertise and provides a clear path for career advancement within the internal audit function.
about the team.
The IT Audit team is a specialised unit within the Internal Audit department that provides independent assurance over the bank's technology environment. You will work alongside highly skilled professionals in a structured and supportive atmosphere. The team focuses on high-impact areas, including emerging technologies, data privacy, and robust cybersecurity protocols.
about the job.
Plan and execute risk-based IT audit assignments covering application controls, infrastructure, and network security.
Evaluate the effectiveness of the bank’s cybersecurity controls and disaster recovery programmes.
Assess compliance with HKMA regulatory requirements, specifically focusing on the Cybersecurity Fortification Initiative (CFI) and TM-E-1.
Review IT governance frameworks and project management life cycles for new digital banking initiatives.
Identify technology-related control weaknesses and provide practical, risk-based recommendations to senior management.
Liaise with the IT department and external auditors to ensure timely remediation of identified issues.
skills & experience required.
Bachelor’s degree in Computer Science, Information Systems, or a related discipline.
CISA qualification is mandatory; CISSP, CISM, or CEH is highly preferred.
Minimum 5 years of experience in IT audit within the banking or financial services sector.
Strong knowledge of banking systems, cloud security, and HKMA technology risk management guidelines.
Excellent analytical skills with the ability to communicate technical risks to non-technical stakeholders.
If you are interested in this role, please click 'Apply Now' or send your CV directly to Marco.li@randstad.com.hk.
...
