Apply now »

Information Systems Senior Auditor

Location:  Nicosia
Other locations:  Anywhere in Country
Salary: Competitive
Date:  25-May-2023

Job description

Requisition ID:  1339862

Information Systems Senior Auditor

(Hybrid Work Mode)


You will be part of our Technology Risk team performing Information Systems and Information Security audits for various clients. Working with the Technology Risk team, you will also be involved in the performance of information security risk assessments, information security framework implementations, IT Governance and Data Privacy Audit. Our client base spans across various sectors such as Banking, Insurance, Logistics, Transportation and includes collaboration with other expert teams within EY.



The opportunity

We’re looking for a professional with experience in IT Audit or a professional with experience in other Technology Risk domains looking to transition in the Auditing of Information Systems and Security. This is a fantastic opportunity for you to be part of a leading firm whilst the firm is instrumental in the growth of your professional career.



Your key responsibilities

  • Supporting multiple IT Audit projects for clients that operate in financial and non-financial services market.
  • Helping organizations identifying their most important Technology risks and advising on mitigation actions.
  • Designing and performing Audit procedures for Information Systems based on various Technology Security and Auditing standards (e.g., IT General Controls, ISO-27001, SWIFT-CSP, EBA, CBC).
  • Supporting the design and implementation of efficient Technology and Security Controls (Security Policies and procedures, Incident Management, Continuity and Service Availability, Change Management, Access Management, Physical and environmental security, Business Continuity Management).
  • Assessing the current state of technology regulations compliance, defining improvement recommendations, and supporting the implementation of actions.
  • Working with financial statutory audit teams, client internal audit, client IT departments and business functions to evaluate the effectiveness of Technology and Security controls.
  • Acting as mentor and coach to the junior members of the team and leading by example.
  • Taking ownership of tasks and collaborating with the team on the delivery of multiple client engagements.
  • Working with managerial level client personnel to address compliance, information security, and operational risks.
  • Key role in the development of audit plans, leading client meetings and performing audit fieldwork.



Skills and attributes for success

  • Technical knowledge of risk-based auditing methodologies and IT general controls.
  • Ability to work on multiple projects and communicate effectively with clients in a clear and concise manner.
  • Creative, proactive, team player and able to work under pressure.
  • Collaborating effectively with other members of the team on planning and developing work program timelines, risk assessments and other documentation.
  • Taking proactive approach in learning and working with other team members within stipulated timeline along with understanding the work quality expectations.
  • Having a good level of knowledge around Information Security frameworks, technology regulations and standards.
  • Good project management and organizational skills.
  • Having good communication skills, inspiring teamwork, and responsibility with other team members.



Minimum requirements for this role

  • Bachelor's or master's degree in Information Technology disciplines. Additional academic background in Finance, Accounting or Business disciplines will be considered as an advantage.
  • Excellent communication skills in both oral and written English and Greek.
  • Strong professional drive for Technology Risk subjects.
  • Certified as CISA, CISSP, CISM or other comparable professional certification is considered a plus.
  • At least 3 years of experience in IT Audit or at least 5 years of experience working within a Technology Risk domain role (i.e., Information Security, Cybersecurity, Security Technologies, IT Governance etc.).
  • Certified as CISA, CISSP, CISM or other comparable professional certification is considered a plus.
  • Knowledge on ISO 27001, ISO 22301, SOC Reports, IT General Controls, and Information Security Risk Assessment will be considered an advantage.



What working at EY offers

EY offers a competitive remuneration package where you will be rewarded for your personal and team performance. We are committed to be an inclusive employer and are happy to consider flexible working arrangements.


Plus, we offer:

  • Private Medical Insurance
  • Life Insurance
  • EY Employee Assistance Program (EAP) (counseling, legal and financial consultation services)
  • EY Tech MBA and EY master’s in business Analysis
  • EY Badges - digital credentials
  • Mobility programs
  • Flexible working arrangements
  • Paid Sick Leave
  • Paid Paternity Leave
  • Maternity, Wedding, and New Baby Gifts
  • Friday afternoon off
  • Dress for the Occasion
  • Free Parking



About EY

As a global leader in assurance, tax, transaction and advisory services, we’re using the finance products, expertise and systems we have developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime.


If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.


The exceptional EY experience is yours to build. 


Apply Now. 

Apply now »