Associate / Senior - IT Audit (Risk Advisory)
Hong Kong, Hong Kong
Forvis Mazars in Hong Kong
Forvis Mazars is a leading global professional services network operating under a single brand with just two members: Forvis Mazars, LLP in the United States and Forvis Mazars Group SC, an internationally integrated partnership operating in...Why join us
You don’t join Forvis Mazars by coincidence, you choose Forvis Mazars: a global school of excellence where you will be challenged to develop and grow. Progression is tied to education, empowering you to match your career to your aspirations both within and outside our firm. We expect your contribution to what Forvis Mazars and our clients do next and reward your ingenuity. Come and write the rest of (y)our story with us – you’ll make friends along the way too. Forvis Mazars, the smart choice.Forvis Mazars Risk Advisory Services Limited provides a wide range of consultancy services, including internal control review, enterprise risk management, compliance review, IT Audit and ESG reporting etc. Join Mazars’ Risk Advisory team in building the resilience our clients who need to protect their long-term performance. We are looking for candidates in two of our key service areas – Internal Audit and IT Audit. This is an entry-level position, if you have the passion to grow with a dynamic team, this is the right place.
What you can expect
- Learn and build your knowledge on how to conduct IT audit over general/ application controls, network security, cybersecurity, blockchain platform operations, and apply Computer Assisted Auditing Technique ("CAAT") for data verification, cyber hacking incident investigation
- Contribute to execution of IT-related risk assessments in the following areas: cybersecurity, IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cloud and third party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements
- Obtain good understanding of IT infrastructure, programs, networks and database, IT security, identify areas of improvement and make recommendations
- Work with client management team to assist in implementation of new processes and controls to address key risks, as necessary
- Draft comprehensive executive summaries and final reports for delivery to client senior management and document and review engagement workpapers in accordance with standard Mazars and industry-accepted methodologies
- Assist in kickoff, status, and closing meetings with engagement team and client and contribute to technology risk knowledge base and internal practice development initiatives
Who we are looking for
- Degree holder in Information Technology or related discipline.
- At least 1-2 years of IT audit experience in Audit or consulting firms; OR
- Professional experience as an internal employee working on IT risk or IT compliance related function
- Member or finalist of professional qualification preferred such as CISA, CISSP or CISM (either one only), HKICPA, ACCA, CPAA
- Fluency in spoken English and Cantonese. Putonghua is a must
- Good written presentation skills in both English and Chinese
- Logical thinker with good interpersonal and communication skills
- Willing to travel (more than 50%) and ability to work diligently under pressure
*Fresh graduates are also welcome.
What we offer
Choosing the right start is the first step to a promising career path. We recognise that rewards are important to you. On top of the base salary you will be receiving, we offer a range of staff caring benefits and policies including medical and dental insurance, life insurance, a 5-day working week, discretionary performance bonus, qualified pay, birthday leave, marriage leave and employee activities. For your career progression, we will provide examination support, including but not limited to study / examination leave and subsidy along the way.
Please apply with detailed resume, university transcript, HKDSE / public examination certificates, current salary, expected salary and earliest availability. All personal data collected would be for recruitment purpose only.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Automation Blockchain CISA CISM CISSP Cloud Compliance Governance IT infrastructure Network security Risk assessment Risk management Strategy
Perks/benefits: Career development Medical leave Salary bonus Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.