Senior IT Internal Auditor (M/F)
Apply now »Date: 30 Sep 2024
Location: Saint-Ouen, J, FR
Company: Alstom
Req ID:449654
We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community of more than 36 300 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.
INTRODUCTION
Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve an organization's operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes.
Under the direct authority of the Vice President Internal Audit, the Senior IT Auditor performs Information Technology (IT) specific audit assignment and bring his/her expertise to the Internal Audit team for other assignments.
YOUR MISSION:
- Contribute to the design of the annual audit plan on the IT perimeter defining processes and activities to be audited, taking into account the risk mapping results and recommendations from the Audit Committee and Senior Management.
- Develop or adjust audit programs for special assignments in context of large and complex operations and processes taking into account IT audit standards and frameworks (ISO 27002, ITIL (Information Technology Infrastructure Library), COBIT (Control Objectives for Business & Related Technology),...) and emerging regulatory themes.
- Plan, execute and close complex information technology audit assignments at corporate levels.
- Assist management in evaluating the quality of controls over IT processes and ensuring compliance with risk management and governance processes; and verify the extent to which control techniques meet business objectives of confidentiality, integrity, availability.
- Execute IT project management reviews at different phases of implementation.
- Review IT general and application controls, such as logical security, change controls, key reports testing, process and technical documentation, etc…
- Document, evaluate and test systems and controls to determine their existence, adequacy and effectiveness.
- Prepare and deliver timely associated audit documentation in accordance with internal audit standards.
- Write the audit report and present to the management the audit results.
- Work with auditees and relevant stakeholders to develop adequate corrective actions and to track implementation until documented evidence is provided.
- Assure management that IT risks are being controlled by assessing risks and recommending adequate controls.
- Contribute to the consolidation of the bi-annual Activity Report for both the Audit Committee and the ALSTOM Leadership Team Committee.
YOUR PROFILE:
Desired background: 5-8 years of work experience in IT audit, project management, business audit, compliance, information security; preferably for large-scale companies in the industrial domain. Good understanding of concepts related to information technology risk and control at all layers of the technology, including logical and physical security, system development lifecycle, change management, IT operations, business continuity management and/or network technologies.
- Integrity: Shall perform his/her work with honesty, diligence, and responsibility. Shall observe the law and ALSTOM’s internal instructions and shall not engage in acts that are discreditable
- Objectivity: Demonstrate the highest level of professional objectivity in gathering, evaluating, and communicating information about the activity or process being examined. Make a balanced assessment of all the relevant circumstances and are not unduly influenced by its own interests or by others in forming judgments
- Professionalism: Demonstrated in-depth technical knowledge and direct experience in the field of IT and audit. Maintain knowledge of new technologies and how they are applied in the business. Understanding of risk assessment practices. Apply the Institute of Internal Auditors Rules of Conduct.
- Teamwork: Resourcefulness, proven interpersonal skills and the ability to work in a diverse environment with sensitivity and respect
- Communication in English: All interviews and deliverables to be in English. Proven and sustained communication (oral and written) skills, including ability to write persuasively in a clear and concise manner, and to communicate effectively to a variety of audiences. Ability to transfer IT language and knowledge into business language.
- Leadership: Ability to influence people and operations to achieve audit/assignment objectives. Ability to lead the audit team and/or to perform alone the assignment.
- Analytical Thinking: Analytical identification and solving of problems. Identifies several pragmatic solutions.
- Initiative: Anticipate and prepare for a specific opportunity or problem that is not obvious to others.
- Flexibility: Able and willing to adapt to and work effectively within a variety of diverse situations, and with diverse individuals or groups. Participate in multiple projects and tasks, with constantly changing priorities and evolving issues.
- Personal Discipline: Ability to work with great autonomy and to achieve specified outcome.
- Discretion: Ability to deal with sensitive and confidential issues using developed discretion and judgment, while maintaining independence and objectivity.
An agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers. We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals.
Job Segment:
Internal Audit, Project Manager, Risk Management, Information Security, Change Management, Finance, Technology, Management