Chief IT Security Governance Specialist

We are seeking a highly skilled Chief IT Security Governance Specialist to join our team at Boubyan Consulting.

• Key Responsibilities:
• Conduct thorough audits of an organization's IT systems and infrastructure to ensure compliance with industry standards, regulations, and best practices.
• Analyze the effectiveness and efficiency of IT controls, identify vulnerabilities, and provide recommendations for improvement.
• Plan and organize IT audits, developing audit plans, objectives, and timelines, and identifying scope and areas of focus based on risk assessments.
• Evaluate the design and operating effectiveness of IT controls, including access controls, change management, data integrity, and information security measures.
• Perform detailed testing of IT controls, reviewing documentation, conducting interviews, and analyzing system logs.
• Identify weaknesses and deficiencies in IT controls and systems that could lead to potential risks or security breaches.
• Prepare comprehensive audit reports detailing findings, recommendations, and suggested action plans, and present findings to management and stakeholders.
• Collaborate with management, IT teams, and other internal departments to ensure compliance with policies, regulations, and industry standards.

• Bachelor's degree in information systems, computer science, or a related field, with a relevant certification such as Certified Information Systems Auditor (CISA) preferred.
• 5 years of experience in IT auditing, with a strong understanding of auditing principles, techniques, and procedures.
• Knowledge of IT governance frameworks, standards, and regulations, such as COBIT, ISO 27001, GDPR, PCI DSS, etc.
• Familiarity with various IT systems and infrastructure, including networks, databases, operating systems, security controls, etc.
• Strong analytical and problem-solving skills, with the ability to identify vulnerabilities and recommend effective control measures.
• Excellent communication and interpersonal skills to collaborate effectively with various stakeholders, present findings, and provide clear and concise audit reports.
• Attention to detail and ability to prioritize and manage multiple audit engagements simultaneously.