Saudi Aramco Careers

Lead IT Auditor

Saudi Arabia
Internal Auditing


Job Description

Requisition ID: 1433794

Req Number: 17291BR

Position Description:
We are seeking an in-charge IT auditor to join the Information Systems Audits Division within Internal Auditing, to be based in our corporate headquarters in Dhahran, Saudi Arabia, with expertise in infrastructure, network and cyber security.

Internal Auditing is an independent and objective assurance and consulting activity designed to add value and improve the operations of Saudi Aramco. Internal Auditing helps the organization to accomplish its objectives by bringing a systematic and disciplined approach to evaluate and improve the effectiveness of the organization’s risk management, control, and governance processes. Internal Auditing provides members of management and the Board of Directors with analyses, recommendations, and information concerning the activities reviewed.

The Information Systems Audits Division is responsible for performing 1) technology audits, 2) supporting business integrated audits in testing automated controls, and 3) providing data analytics to other business audit divisions.

Minimum Requirements:
As a successful candidate, you will hold a bachelor’s degree or higher in computer science, management information systems, business, engineering, or a relevant field.

You will have a minimum of seven (7) years of experience in IT auditing and IT Security.

You must demonstrate excellent oral and written communications in the English language, and excellent presentation and interpersonal skills.

You should hold at least one (1) professional certification such as Certified Information Systems Security Professional (CISSP), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Certified Ethical Hacker (CEH), etc. You should be flexible to travel in the Kingdom and/or out of the Kingdom to conduct audits.

Duties & Responsibilities:
You will be required to perform the following:

Establish the objective and scope of the audit engagement.
Identify key risks and controls within the business and operational processes under review.
Develop comprehensive risk-based audit programs.
Execute risk-based audit procedures in alignment with company policies and international standards. Prepare audit reports.
Deliver presentations to client management at the audit opening and closing meetings.
Provide on-the-job training and mentoring to less experienced staff.
Evaluate the performance and capabilities of the assisting staff auditors.
Provide assurance and consulting activities on internal controls as requested.
Provide on-the-job training and mentoring to less experienced staff.
Act as an Internal Auditing SME for the area of network and cyber security.

About us: