Search by job, company or skills

Hays

IT Risk & Audit Consultant (Contract)

Hays
Saudi Arabia, Riyadh
5-8 Years
new job description bg glownew job description bg glownew job description bg svg
  • Posted a month ago
  • Be among the first 10 applicants
Early Applicant

Job Description

Role Overview

We are seeking an experienced Technology Risk & IT Audit Consultant to support ongoing audit, risk assessment, and compliance engagements for a leading bank in Riyadh. The ideal candidate will have strong expertise in IT Governance, Technology Risk Management, ITGC, cybersecurity, and regulatory compliance aligned with Saudi Arabia's regulatory ecosystem.

Key Responsibilities

Technology Risk & Assessment

  • Conduct comprehensive Technology Risk Assessments across IT domains.
  • Perform risk assessments related to IT Governance, ITGF, IT Controls, and cybersecurity frameworks.
  • Conduct data management risk assessments, ensuring alignment with regulatory and international standards.

IT Internal Audit & Controls

  • Perform IT Internal Audits, ITGC Testing, and identify gaps in design and operating effectiveness.
  • Develop Risk & Control Matrices (RCMs), Audit Programs (APMs), and other audit-related deliverables.
  • Review IT processes, applications, infrastructure, cybersecurity controls, and data management practices.

Compliance & Regulatory Reviews

  • Conduct assessments against Saudi regulatory frameworks, including:
  • NCA (ECC, CSCC)
  • SAMA (ITGF, CSF, BCM)
  • SADIA / NDMO
  • DGA Qiyas
  • Ensure compliance with international standards, including:
  • ISO 27001, ISO 22301
  • COBIT 2019
  • ITIL v4

Maturity & Capability Assessments

  • Perform IT and cybersecurity maturity assessments based on recognized global frameworks.
  • Evaluate technology risk posture and provide recommendations for control enhancement.

Reporting & Documentation

  • Prepare highquality audit reports, risk assessment reports, RCMs, APMs, and executive-level presentations.
  • Document observations, risk ratings, and recommendations aligned with banking sector standards.

Required Experience

  • Minimum 58 years of experience in Technology Risk, IT Audit, Cybersecurity, or IT Governance.
  • Strong understanding of banking environments, processes, and regulatory requirements.
  • Proven experience conducting:
  • IT Governance assessments
  • IT Internal Audits & ITGC reviews
  • Cybersecurity and data management assessments
  • Risk assessments aligned with ITGF, ISO, and COBIT
  • Handson exposure to KSA regulatory frameworks:
  • NCA ECC / CSCC
  • SAMA ITGF / CSF / BCM
  • SADIA NDMO
  • DGA Qiyas
  • Familiarity with global frameworks:
  • ISO 27001, ISO 22301
  • COBIT 2019
  • ITIL v4

Preferred Certifications

  • CISA
  • CISM
  • ISO 27001 & ISO 22301 Lead Auditor/Implementer
  • COBIT certification
  • ITIL v4

More Info

Job Type:
Permanent Job
Industry:
Other
Function:
Technology Risk It Audit
Employment Type:
Full time

About Company

Hays

Job ID: 142915515

Jobs by Skill - IT
Jobs by Skill - Non IT
International Jobs
Last Updated: 03-04-2026 07:42:50 PM
Homejobs in Saudi ArabiaIT Risk & Audit Consultant (Contract)