Our Consultancy office is looking for a highly competent IT Auditor for both short term and long term projects ranging from 6 months to 12 months.
Role and Responsibilities
- Lead and managed IT audit projects of IT systems, including infrastructure, applications, data management and cybersecurity controls supporting crypto trading and custody
- Review IT general controls (ITGCs), system development lifecycle (SDLC), change management, access management, and backup processes.
- Develop and execute comprehensive IT audit plans and strategies
- Blockchain & Crypto-Specific Audits
- Review wallet management processes (cold/hot wallets, multi-sig protocols, key security).
- Audit crypto transaction flows on-chain and reconcile with internal records.
- Assess the integrity of matching engines, price oracles, and trade execution systems.
- Revenue and Corresponding Cost System Audit & Data Flow Integrity
- Support audit coverage over revenue systems and processes, including end-to-end flow from user-initiated transactions (e.g., trades, deposits, withdrawals) to system-based computation of fees and costs, and recording in the general ledger.
- Validate accuracy and completeness of revenue and corresponding cost recognition logic, including trading fees, withdrawal fees, spreads, and cost attribution (e.g., gas fees, liquidity provider payouts).
- Assess system integration points between front-end trading platforms, back-end financial systems, and accounting/ERP tools.
- Review reconciliation processes between transaction logs, blockchain records, and financial reports.
- Maintain relationships with client management and stakeholders to manage expectations of service, including work products, timing and deliverables
- Demonstrate a thorough understanding of complex information systems and apply it to client situations
- Prepare and present audit findings reports to relevant stakeholders and ensure timely follow up on audit issues and recommendations
- Ensure IT audits are conducted in accordance with relevant standards, regulations and best practices
- Stay updated on trends and changes in regulations and industry standards
- Identify and assess IT related risks and controls and provide recommendations for mitigating identified risks
Qualifications/ Skills
- Degree in Information Technology, Computer Science or related field
- Industry-recognized certifications (e.g., CIA, CISA, CRISC, CISM, CISSP) are highly valued
- Proven track record with minimum 5 years in IT audit or as IT Risk Consultant
- Hands-on experience with a diverse technology stack, including cloud platforms, ERP systems, and data analytics tools
- Demonstrates experience in some or all of the following areas:
- IT General Controls Review
- ITAC Review
- Crypto Audit Review
- Infrastructure Review
- Cybersecurity Review
- ERP Security and Control Review (not a must)
- Cloud Security Review
- IT Risk Assessment
- MAS Compliance Knowledge on TRM/Cyber Hygiene (not a must)
- Strong project management skills
- Strong written and verbal communication skills and presentation skills
- Excellent problem solving skills
- Good team player and able to work in fast paced environment