IT Auditor

Role description:

Evoca is looking for an IT Auditor who will be responsible for the independent assessment of information technology, information security, cybersecurity, digital services and technology-related risks, as well as for the planning, coordination and execution of IT audits.

What will you gain?

We are committed to ensuring everyone can flourish in their roles by creating a working environment that supports wellbeing and provides a generous benefits package, a wide range of career and personal development opportunities. By joining Evoca, you will get:

• health insurance;
• travel insurance;
• favorable terms of Evoca products and services;
• holiday and year-end bonuses;
• bonuses on marriage, birth of a child;
• paid days off;
• sport package;
• English language trainings;
• large opportunities for continuous learning and development (participation in international conferences, business trips abroad, opportunities to get international certifications and study in top universities worldwide).

What will you be doing?

• identify and assess IT risks, including participation in the development of a risk-based audit plan;
• conduct audits of banking systems, payment systems and mobile banking platforms and evaluate the change management processes related to these systems;
• assess compliance with information security policies and procedures and evaluate the results of vulnerability assessments and penetration testing;
• evaluate the alignment of the IT strategy with the Bank’s objectives by analyzing the IT organizational structure and the distribution of responsibilities;
• conduct audits of business continuity and disaster recovery processes;
• assess compliance with the regulatory requirements of the Central Bank of Armenia, as well as with professional guidelines and standards, including ISACA guidance, the ISO 27001 standard, the NIST Cybersecurity Framework, and SWIFT CSP requirement;
• collaborate with third-party providers delivering IT and Information Security audit services to the Bank;
• prepare audit reports, presenting identified deficiencies, risks and recommendations aimed at mitigating or eliminating those risks.

What skills are we looking for?

• higher education in Information Technology, Cybersecurity, Computer Science or a related field;
• at least 3 years of work experience in banking audit or IT audit;
• professional certifications such as CISA, CISM, CIA, CRISC or similar are preferred;
• strong knowledge of IT controls, networks, databases, information security and banking systems;
• excellent command of both Russian and English.

Please send your CV to [email protected] by indicating "IT Auditor" in the subject line of the e-mail.