Learn and build your knowledge on how to conduct IT audit over general/application controls, network security, cybersecurity, blockchain platform operations, and apply Computer Assisted Auditing Technique ("CAAT") for data verification, cyber hacking incident investigation
Contribute to execution of IT-related risk assessments in the following areas: cybersecurity, IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cloud and third party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements
Obtain good understanding of IT infrastructure, programs, networks and database, IT security, identify areas of improvement and make recommendations
Work with client management team to assist in implementation of new processes and controls to address key risks, as necessary
Draft comprehensive executive summaries and final reports for delivery to client senior management and document and review engagement workpapers in accordance with standard Mazars and industry-accepted methodologies
Assist in kickoff, status, and closing meetings with engagement team and client and contribute to technology risk knowledge base and internal practice development initiatives

Degree holder in Information Technology or related discipline
At least 1-2 years of IT audit experience in Audit or consulting firms; OR Professional experience as an internal employee working on IT risk or IT compliance related function
Member or finalist of professional qualification preferred such as CISA, CISSP or CISM (either one only), HKICPA, ACCA, CPAA.
Fluency in spoken English and Cantonese
Putonghua is a must
Good written presentation skills in both English and Chinese
Logical thinker with good interpersonal and communication skills
Willing to travel (more than 50%) and ability to work diligently under pressure

Associate/Senior – IT Audit, Risk Advisory

Key skills