Senior IT Auditor / IT Audit Consultant
Check all associated application documentation thoroughly before clicking on the apply button at the bottom of this description.
Role Overview
We are seeking an experienced Senior IT Auditor to support the Internal Audit function of a leading railway infrastructure company. The consultant will contribute to assurance and advisory engagements aimed at evaluating and enhancing the effectiveness of IT governance, risk management, cybersecurity, data protection, and internal control frameworks across a complex and critical infrastructure environment.
Key Responsibilities
* Plan and execute IT audit engagements in accordance with International Internal Audit Standards and established audit methodologies.
* Assess the design and effectiveness of controls relating to IT infrastructure, applications, cybersecurity, cloud environments, and data management processes.
* Evaluate IT governance frameworks, software development lifecycle (SDLC) processes, and technology-related risk management practices.
* Review compliance with applicable regulatory and data privacy requirements, including GDPR.
* Conduct interviews, walkthroughs, and evidence-based testing using a "show-me" approach to validate control effectiveness.
* Identify control weaknesses, operational risks, and opportunities for process improvement.
* Prepare clear and concise audit documentation, working papers, reports, and presentations.
* Present findings and recommendations to management and key stakeholders.
* Support advisory engagements by providing independent expertise on IT risk, security, and governance matters.
* Collaborate with multidisciplinary audit teams and business stakeholders throughout the audit lifecycle.
Required Qualifications and Experience
* Bachelor's or Master's degree in Information Technology, Computer Science, Information Security, Business Administration, or a related field.
* Minimum 5–8 years of experience in IT auditing, IT risk management, cybersecurity, or internal audit.
* Strong understanding of IT governance, infrastructure, cloud technologies, cybersecurity, data management, and software development practices.
* Experience performing audits within large, complex organisations, preferably in critical infrastructure, transportation, utilities, or highly regulated industries.
* Familiarity with recognised frameworks and standards such as COBIT, ISO 27001, NIST, ITIL, and GDPR.
* Professional certifications such as CISA, CISSP, CRISC, CIA, or equivalent are highly desirable.
* Excellent analytical, communication, and stakeholder management skills.
* Fluency in Dutch and/or French; English proficiency is considered an asset.
Preferred Experience
* Auditing cloud platforms and modern IT architectures.
* Cybersecurity and information security assessments.
* Data governance, analytics, and data privacy reviews.
* Internal audit engagements within public-sector or regulated environments.
Deliverables
* Audit planning documents and risk assessments.
* Audit working papers and testing documentation.
* Audit reports including observations, risk ratings, and recommendations.
* Executive presentations and management briefings. xphnsxz
* Follow-up assessments of remediation actions.