The successful candidate will join SIA’s Internal Audit Division to perform risk-based assurance and advisory reviews across the SIA Group’s (SIA, Scoot, SIA Engineering Company and other subsidiaries) information technology and cybersecurity risk domains. The role provides independent and objective assurance to Management and Audit Committee on the adequacy and effectiveness of governance, risk management and internal control processes, while driving digital enablement and continuous improvement in audit delivery.
The IT auditor will deliver independent and objective assurance and advisory services across SIA Group's information technology and cybersecurity risk domains.
Key Responsibilities
- Develop risk-based audit scope, objectives and strategies to ensure proper coverage for the area under review.
- Plan and perform audit fieldwork to assess control design and operating effectiveness gaps in accordance with IT policies and standards or best practices.
- Assess IT practices, infrastructure, cybersecurity and application environments across SIA Group to identify risks and control gaps, as well as provide practical recommendations.
- Prepare detailed audit documentation and clear, concise reports for management and stakeholders.
- Leverage on data analytics and digital capabilities (such as GenAI) to perform continuous audit procedures, identify emerging risks and improve audit efficiency.
- Support ad-hoc tasks and digital initiatives for Internal Audit Division.
Requirements
- University degree, preferably in computer sciences or cyber security related fields.
- Professional qualification such as Certified Information Systems Auditor (CISA), AWS Certified Solutions Architect Associate, CompTIA Security+ or equivalent will be preferred.
- Minimum 3 years of working experience in IT security, risk management or audit.
- Experience with IT systems, databases, network, cybersecurity, and cloud technologies.
- Experience with data analytics and basic scripting (such as Python) will be preferred.
- Good understanding of IT governance, security and risk management, IT General Controls (ITGC), and IT Application Controls (ITAC).
- Knowledge of SAP S/4HANA business processes and controls is an advantage.
- Excellent communication and stakeholder management skills.
- Strong report writing skills to present findings and actions clearly and concisely.
- Exhibits independent problem-solving aptitude with a self-directed, results-oriented approach.
- Willing to travel overseas stations or vendor sites depending on projects assigned.
We thank all candidates for your interest in Singapore Airlines, and regret that only shortlisted candidates will be notified.
