Senior IT Internal Audit Specialist

	Contact	Fulltime
	Posted on	23 June 2025

Leadership and Audit Management

Preparation for the development of the annual audit plan considering the key risks identified.
Plan, lead, execute and manage IT audit engagements, from planning to reporting according to established schedule and quality requirements.
Provide consulting service for new product/ system development and process enhancement without compromising independence.
Plan and allocate resources to effectively accomplish the work to meet productivity and quality goals as well as adjust the IT audit plans based on the changing IT controls, risk posture, and/or business priority.
Mentor and guide junior auditors, providing technical expertise and fostering professional development within the team.
Discuss and share viewpoint of risk and concern, report the audit results with Parent company.

Risk Assessment and Control Evaluation

Conduct comprehensive risk assessments to identify and evaluate IT risks, control weaknesses, and areas of improvement in the organization’s digital asset and blockchain systems.
Assess the effectiveness of IT controls related to cybersecurity, data integrity, digital asset custody, and transaction security.

Regulatory Compliance

Ensure compliance with relevant regulatory requirements (e.g., SEC, AMLO, GDPR) and industry standards (e.g., ISO, NIST) across IT systems and digital asset processes.
Provide strategic guidance on maintaining and enhancing compliance in a rapidly evolving regulatory environment.
Stay up to date with related regulatory requirement, guideline, and best practices.

Advanced Audit Techniques

Utilize advanced audit methodologies and data analytics to evaluate complex IT systems, blockchain networks, and cryptocurrency exchanges.
Identify and assess emerging risks in the cryptocurrency industry, including new cybersecurity threats and technological advancements.

Reporting and Communication

Prepare and present detailed audit reports to senior management and the board, highlighting key audit findings, risks, and recommendations.
Collaborate with cross-functional teams, including IT, risk management, and compliance, to develop and implement action plans to address audit findings and monitor / follow up the committed action plan.

Continuous Improvement

Stay abreast of the latest developments in blockchain technology, digital asset security, and IT audit practices.
Recommend and implement best practices to improve the organization’s IT governance, risk management, and control environment.

Bachelor’s degree in Information Technology, Computer Science, Accounting, Finance, or related field. Master’s degree is preferred.
Minimum of 7-10 years of experience in IT audit, cybersecurity, or risk management, with a significant portion of that experience in the financial services or cryptocurrency industry.
Extensive knowledge of blockchain technology, digital asset security, and cryptocurrency exchanges is essential.
Professional certifications such as CISA, CISSP, CISM, CRISC or ISO 27001 Lead auditor are required.
Ability to apply the related IT standard and good practice e.g. COBIT, ITIL, ISO27001, PCI/DSS, Cyber Security to audit work.
Strong leadership and project management skills, with the ability to lead complex audit engagements and manage multiple priorities.
Advanced understanding of IT audit methodologies, cybersecurity frameworks, and regulatory compliance.
Excellent analytical skills with the ability to identify and evaluate complex IT risks and develop actionable recommendations.
Superior communication and report-writing skills, with the ability to effectively communicate complex technical issues to senior management.
Ability to work independently and collaboratively in a high-pressure, fast-paced environment.