Lead Auditor, IT & Infrastructure

Role Purpose

To conduct Technology/Network Audits independently as per the annual Internal Audit plan, including network infrastructure and security controls review, network access. May be part of a larger team of Lead Auditors / Auditors / Asst. Auditors for large scale Network \ Technology Audits. To conduct Quality Assurance reviews (QAR) and Compliance Monitoring of IT & Network Infrastructure for risk management and effectiveness in accordance with IA Plan and IA Manual.

Position Information

Title: Lead Auditor (IT & Infrastructure)

Unit: Internal Audit
Division: Technology Audit
Location: HQ
Line Manager: SM –Technology Audit.

Grade

Lead Auditor: P5
Minimum role requirements:
Qualification: Bachelor in relevant field, preferably in in Information Technology, Computer Science, or related field. Professional certification such as, CISA \ CISSP \ CEH \CIPM \ CIPP \CISM .
Experience:

Lead Auditor: 8 years of experience

Key Accountabilities

Conduct the assessment of the various aspects of Telecom & IT Network Infrastructure Audits (LAN, WAN, firewalls, switches, routers, and other network components) in accordance with the Internal Audit plan and IA Manual as part of a team of Lead Auditors / Auditors / Asst. Auditors
Lead assessment of Network architecture, network configuration, network access checks and security controls of Telecom & IT Networks.
Conduct Vulnerability Assessment (VA) and Penetration Testing (PT) to identify possible risks and highlight them in the Internal Audit reports.
Coordinate with IT division and department heads along with the Manager, in all matters relating to Telecom & IT Network audit findings, recommendations and required implementation to ensure that all audit observations are communicated and addressed.
Document required implementation activities and work closely with Business Units and department heads for audit follow-up and implementation audits.
Review and prepared Internal Audit reports for accuracy of findings, observations and clarity of recommendations and corrective actions from the completed Telecom & IT Network Infrastructure audits.
Review follow-up audit reports in conjunction with previous audit reports and highlight necessary escalations and corrective actions.
Review compliance monitoring reports for identified and recorded areas of gaps, risks and non-compliance leading to Omantel’s financial / operational impact in the Audit Report for Audit Committee.
Ensure any corrective action requests (CARs) are responded to in a timely manner to ensure the removal of any non-conformances and their root cause identified during QAR.
Lead Compliance Monitoring audits to ensure that the operations of the Omantel are being carried out within the legal and regulatory framework of Oman.
Highlight areas of gaps, risks and non-compliance during Compliance Monitoring audits that may lead to Omantel’s financial / operational impact
Provide recommendations to improve existing processes and controls to meet cybersecurity and data privacy standards and mitigate risk.

Key Competencies

Competency Name

Lead Auditor

Creativity & Innovation

3 - Advanced

Proactivity

3 - Advanced

Analytical Thinking & Problem Solving

Intermediate

Attention to Detail

3 - Advanced

Professional Ethics

3 - Advanced

Internal Audit Processes

3 - Advanced

Business Communication

3 - Advanced

Project Management

3 - Advanced

Internal Audit Delivery

3 - Advanced

Compliance and follow-up

3 - Advanced

Quality of Internal Audit

3 - Advanced

Meger, Acquisition and Business Integration

3 - Advanced

Optimum Group Structures & Subsidiary Governance Framework