IT Audit Manager

Cerba Healthcare is a fast growing international leader provider of diagnostic services, which covers all fields of Human and veterinary medical Biology including clinical trials.

The group has decided to strengthen its Audit & Risk Management processes and its Internal Audit practices. As a result, we are looking for a talented **IT Audit Manager** to join our team to focus on IT controls, Cybersecurity, and IT governance aspects.

This auditor will have the opportunity to lead IT / Risk assurance engagements independently or with our consultancy firms, which are performing several reviews on multiple topics of interest.

**Frequent travels** : position based in Issy-les-Moulineaux (92) near Paris with 30%-40% of travels in Europe.

**Key responsabilities**:

- Responsible for leading and performing Internal Audit reviews with a core focus on ITGC, Cybersecurity and transformation program. This will include end-to-end responsibility for delivery including planning, defining the audit work programme and approach, fieldwork, and reporting
- Assist the Head of Internal Audit in planning and executing risk-based audits.
- Support the Head of Internal Audit in appraising internal audit working practices, identify areas of improvement to develop the function.
- Take ownership for the review and closure of corrective actions.

Topics of risk & internal controls and cybersecurity to be covered:

- Crisis management and business continuity planning (e.g., standard 22301)
- Security of digital transformation (e.g., cloud, big data, internet of things)
- Risk analysis and deployment of compensatory measures
- IS security governance (e.g., ISO 2700x standards, NIST CSF, CIS18, etc.)
- Identity and access management
- Regulatory compliance (e.g., PCI-DSS standard, GDPR regulation, European NIS directive)
- Fraud prevention

She/ He will report directly to the Head of Internal Audit. The Group has a demonstrable track record in successfully moving people around the Group and progressing their careers.

**Profil**:

- Ideally a master’s degree in Business Engineering, Computer Science, or alternatively another relevant economic major, combined with a master’s degree in Management Information system.
- CISA, ISO27K certification is a plus.

Professionnal background:

- Minimum of 6 - 7 years of relevant professional experience with at least 3 years in a BIG 4 consulting firm (minimum Senior Grade).
- A solid understanding of IT internal control principles and security audits including configuration review, IT infrastructure reviews, OS and Web services security review, risk analysis.
- IT audit, SOX IT audit, EBIOS, BCP / DRP, EDS.
- A background in ERP systems and/or network administration, development, information security.

Hard skills:

- Knowledge of: SOC (Security Operation Centre) / SIEM
- English (fluent, must have)
- French (fluent, must have)

Soft skills:

- Proven interpersonal skills, the ability to listen and coach, strong communication skills, both verbal and written.
- Able to work towards challenging deadlines without compromising on quality.
- Tech-savvy and eager to learn in view of personal growth and development.
- See challenges as opportunities.
- Ability to function in a fast moving/entrepreneurial environment, and to react quickly to changes that effect the risk/controls environment, as well as being able to identify opportunities with regards to improving control processes, making efficiencies, and reducing costs.
- Able to see the ‘bigger picture’ and deliver ‘value
- added’ in a challenging environment. Be innovative in the way that things are done and ‘solution driven’.
- A proactive, energetic, pragmatic and rigorous with strong people skills.
- Be comfortable operating in a management environment, which is open, honest, dynamic and challenging, as well as one that spans a number of complex business issues.

**What we offer**
- A workspace where everyone feels respected, valued, and free to be themselves.
- Inspiring and awesome colleagues.
- A flexible working schedule including homeworking and the possibility to conveniently make use of various holiday schemes.
- An interesting salary and benefits package.
- Possibility to prepare additional certifications.

**If you are intere**sted in this job offer, please send us your resume.**

**Contrat**:
CDI

**Temps de travail**:
Temps complet

**Localisation du poste**:
**Localisation du poste**:
Europe, France, Ile-de-France, Hauts-de-Seine (92)

**Code postal et ville (en toutes lettres)**:
11 rue René Jacques - 92130 ISSY-LES-MOULINEAUX

**Déplacements**:
Oui

**Niveau d'études min. requis**:
5 - Master

**Niveau d'expérience min. requis**:
Entre 6 et 10 ans

**Spécialisation**:

- Comptabilité/Finance/Economie Gestion
- Juridique/Droit