Experienced IT/Cyber Security Controls Tester needed for a global financial services firm. The successful candidate will be responsible for testing cyber security controls and IT general controls (ITGCs). You will play a key role in ensuring control effectiveness, compliance with regulatory requirements, and contribute to the automation of testing procedures.
Key Responsibilities:
* End-to-end control testing for network firewalls, baseline configurations, data encryption etc.
* Execute testing of ITGCs, including access controls, change management, backup and recovery, and logical security.
* Advise on the technology landscape related to vulnerability management, network firewalls, network segmentation, data encryption, identity access management etc.
* Evaluate control design and operational effectiveness, identifying deficiencies and areas for improvement.
* Support audit, compliance, and regulatory assessments by providing timely and accurate control testing results
* Collaborate with process owners and IT teams to collect evidence and understand control environments.
* Maintain accurate and detailed workpapers in accordance with internal documentation standards.
* Contribute to automated testing procedures and scripts using tools such as RPA PowerShell, Python, SQL, or automation frameworks.
* Participate in continuous improvement of testing methodologies and control testing automation.
* Prepare clear and concise findings reports and present results to stakeholders, including management and auditors.
As an ideal candidate, you will have a proven track record of delivering cyber security/IT control testing for a global organisation. You will also have knowledge or experience of how to automate controls testing.