Deskripsi Pekerjaan
Petron Corporation, the leading oil refining and marketing company in the Philippines, is seeking a highly skilled and experienced Information Technology (IT) Auditor to join our dynamic Internal Audit team. This role is pivotal in safeguarding the integrity, confidentiality, and availability of our critical information systems across our extensive network of operations, including refineries, depots, and service stations nationwide.
As the lead on IT audit engagements, you will be responsible for planning, executing, and reporting on a wide spectrum of IT audits, encompassing application controls, infrastructure, cybersecurity, and business continuity. You will assess risks, evaluate the design and operating effectiveness of internal controls, and provide actionable recommendations to enhance Petron's security posture and operational efficiency. This is an excellent opportunity for a seasoned IT audit professional to make a significant impact within a major Philippine enterprise.
At Petron, we value integrity, innovation, and collaboration. We offer a competitive compensation package, a supportive work environment, and extensive opportunities for professional growth and certification development. If you are passionate about IT governance, risk management, and driving continuous improvement, we encourage you to apply and become part of the Petron family. Help us secure the backbone of the nation's energy supply and take the next step in your auditing career.
Tanggung Jawab
- Lead and execute IT audit engagements in accordance with professional auditing standards and internal methodology (e.g., COBIT, ISO 27001).
- Assess the design and operating effectiveness of internal controls over information systems, including IT General Controls (ITGCs) and Application Controls.
- Identify, analyze, and document IT-related risks (cybersecurity, data privacy, business continuity, IT governance) and recommend robust mitigation strategies.
- Review IT processes such as change management, logical access controls, network security, database administration, and the System Development Life Cycle (SDLC).
- Prepare detailed audit workpapers and draft comprehensive, clear, and concise audit reports for management and the Audit Committee.
- Collaborate with cross-functional teams across Finance, Operations, and Legal to ensure alignment of audit objectives and remediation efforts.
- Stay abreast of emerging technologies, regulatory requirements, and industry best practices to continuously improve the audit function.
Kualifikasi
- Bachelor's Degree in Accountancy, Computer Science, Information Systems, or a related field.
- Certified Information Systems Auditor (CISA) certification is required. Other professional certifications (CISSP, CIA, CPA, CRISC) are highly preferred.
- Minimum of 3-5 years of progressive experience in IT auditing, preferably within a Big 4 firm or a large multinational corporation (LMC).
- Strong understanding of IT general controls, application controls, network security, and cybersecurity principles.
- Hands-on experience with SAP, Oracle EBS, or other major ERP systems is a significant advantage.
- Excellent analytical, problem-solving, and critical thinking skills with high attention to detail.
- Superior written and verbal communication skills, with the ability to present complex issues to non-technical stakeholders.
- Proven ability to manage multiple priorities and work effectively both independently and within a team environment.