IT Auditor

Hong Kong - Hong Kong

Monthly Salary: Not Disclosed

Posted on: Yesterday

Vacancies: 1 Vacancy

Job Summary

Binance is a leading global blockchain ecosystem behind the worlds largest cryptocurrency exchange by trading volume and registered users. We are trusted by over 280 million people in 100 countries for our industry-leading security user fund transparency trading engine speed deep liquidity and an unmatched portfolio of digital-asset products. Binance offerings range from trading and finance to education research payments institutional services Web3 features and more. We leverage the power of digital assets and blockchain to build an inclusive financial ecosystem to advance the freedom of money and improve financial access for people around the world.

Responsibilites:

Identify key technology and data risks at the group-wide and local level for each entity considering the relevant strategies and business environment.
Support the development of the annual audit plan considering the key risks identified.
Preparation of the annual audit plan and schedules for Central and Regional units.
Plan lead and execute audits and evaluate the adequacy of risk management and control for technology and cyber related risks according to established schedule and quality requirements.
Partner closely with domestic auditors and the CISO to assess and maintain the IT audit universe and provide training tools and support to non-SMEs.
Provide SME support to the broader team on technology and cyber risks.
Keep up-to date with emerging risks and risk best practices.
Continuously mature CIAs capabilities and provide insights to key stakeholders.
Advocate technology advisory services to other BUs to improve the relevancy of the Internal Audit.
Plan and allocate resources to effectively accomplish the work to meet productivity and quality goals as well as adjust the IT audit plans based on the changing IT controls risk posture and/or business priority.
Build strong audit relationship with key IT Management of the Central office and BUs via regular interaction informing them of emerging risk issues and other key change controls related to key business processes.
Draft audit reports and lead discussion of issues and remedial action plans with the appropriate levels of management.
Facilitate issuance of audit reports to management.
Lead the team to follow-up outstanding audit issues and monitor timely completion of agreed remedial actions by management.

Requirements:

Minimum 8 years of experience in technology audit.
Bilingual English/Mandarin is required to be able to coordinate with overseas partners and stakeholders.
Proven experience auditing IT aspects including governance risk management system and cybersecurity preferably gained within financial services payment institutions or from regulators.
Experience in digital forensics or investigation is highly preferable.
Experience auditing or working in the First or Second Line of Defense IT information security and operational risk functions or experience with payments and international transactions would be advantageous.
Sound understanding of software development system architecture information and cyber security and cloud computing.
Knowledge of risk based auditing and risk management frameworks (e.g. ISO27001 NIST COBIT COSO SOC2 PCI-DSS).
Ability to apply analytics process automation and develop a data-driven internal audit approach.
Ability to review code (Python Java SQL etc.) and develop data analytics solutions is highly desirable but not essential.
Confident in dealing with senior stakeholders such as Principal engineers Head of Departments CISO and CTO.
Able to work effectively in a fast-changing business environment and manage shifts in priorities.
Relevant professional certifications or industry accreditations (CISSP CISM CISA CIA AWS or GCP certifications etc.) would be a plus.
Degree qualified in computer science information security engineering or of a quantitative discipline would be a plus.

Why Binance

Shape the future with the worlds leading blockchain ecosystem

Collaborate with world-class talent in a user-centric global organization with a flat structure

Tackle unique fast-paced projects with autonomy in an innovative environment

Thrive in a results-driven workplace with opportunities for career growth and continuous learning

Competitive salary and company benefits

Work-from-home arrangement (the arrangement may vary depending on the work nature of the business team)

Binance is committed to being an equal opportunity employer. We believe that having a diverse workforce is fundamental to our success.

By submitting a job application you confirm that you have read and agree to our Candidate Privacy Notice.

We may use artificial intelligence (AI) tools to support parts of the hiring process such as reviewing applications analyzing resumes or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed please contact us.

Required Experience:

Responsibilites:

Identify key technology and data risks at the group-wide and local level for each entity considering the relevant strategies and business environment.
Support the development of the annual audit plan considering the key risks identified.
Preparation of the annual audit plan and schedules for Central and Regional units.
Plan lead and execute audits and evaluate the adequacy of risk management and control for technology and cyber related risks according to established schedule and quality requirements.
Partner closely with domestic auditors and the CISO to assess and maintain the IT audit universe and provide training tools and support to non-SMEs.
Provide SME support to the broader team on technology and cyber risks.
Keep up-to date with emerging risks and risk best practices.
Continuously mature CIAs capabilities and provide insights to key stakeholders.
Advocate technology advisory services to other BUs to improve the relevancy of the Internal Audit.
Plan and allocate resources to effectively accomplish the work to meet productivity and quality goals as well as adjust the IT audit plans based on the changing IT controls risk posture and/or business priority.
Build strong audit relationship with key IT Management of the Central office and BUs via regular interaction informing them of emerging risk issues and other key change controls related to key business processes.
Draft audit reports and lead discussion of issues and remedial action plans with the appropriate levels of management.
Facilitate issuance of audit reports to management.
Lead the team to follow-up outstanding audit issues and monitor timely completion of agreed remedial actions by management.

Requirements:

Minimum 8 years of experience in technology audit.
Bilingual English/Mandarin is required to be able to coordinate with overseas partners and stakeholders.
Proven experience auditing IT aspects including governance risk management system and cybersecurity preferably gained within financial services payment institutions or from regulators.
Experience in digital forensics or investigation is highly preferable.
Experience auditing or working in the First or Second Line of Defense IT information security and operational risk functions or experience with payments and international transactions would be advantageous.
Sound understanding of software development system architecture information and cyber security and cloud computing.
Knowledge of risk based auditing and risk management frameworks (e.g. ISO27001 NIST COBIT COSO SOC2 PCI-DSS).
Ability to apply analytics process automation and develop a data-driven internal audit approach.
Ability to review code (Python Java SQL etc.) and develop data analytics solutions is highly desirable but not essential.
Confident in dealing with senior stakeholders such as Principal engineers Head of Departments CISO and CTO.
Able to work effectively in a fast-changing business environment and manage shifts in priorities.
Relevant professional certifications or industry accreditations (CISSP CISM CISA CIA AWS or GCP certifications etc.) would be a plus.
Degree qualified in computer science information security engineering or of a quantitative discipline would be a plus.

Why Binance

Shape the future with the worlds leading blockchain ecosystem

Collaborate with world-class talent in a user-centric global organization with a flat structure

Tackle unique fast-paced projects with autonomy in an innovative environment

Thrive in a results-driven workplace with opportunities for career growth and continuous learning

Competitive salary and company benefits

Work-from-home arrangement (the arrangement may vary depending on the work nature of the business team)

Binance is committed to being an equal opportunity employer. We believe that having a diverse workforce is fundamental to our success.

By submitting a job application you confirm that you have read and agree to our Candidate Privacy Notice.

Required Experience:

Key Skills

IT Experience
ISO 27001
Risk Management
COSO
IT Auditing
PCI
COBIT
NIST Standards
SOX
Information Security
Internal Audits
FISMA

Apply Now

About Company

Binance

Binance is a blockchain ecosystem comprised of Exchange, Labs, Launchpad, Info, Academy, Trust Wallet, and Blockchain Charity Foundation (BCF). Binance Exchange is one of the fastest and most popular cryptocurrency exchange platforms in the world, capable of processing over 1.4 millio ... View more

View Profile View Profile

AI AutoApply

Apply to 100+ jobs with one click