What does this role involve:

• Executing IT audits by conducting interviews, identifying key risks and controls, gathering evidence and performing testing
• Preparing audit work papers that comply with international auditing standards for content and quality
• Identifying, evaluating and document the design and effectiveness of the company's internal controls looking for both control gaps and opportunities to gain process efficiencies
• Interacting with business partners to assess audit findings including control weaknesses with an appropriate degree of professional skepticism. 
• Keeping audit management informed of audit findings and assisting business partners with the development of management action plans to mitigate weaknesses and evaluate adequacy of management’s response. Where appropriate, test corrective actions taken.
• Drafting audit reports to formally communicate the results of the audit and related recommendations to senior management
• Supporting non-IT audit with data gathering, analysis and report creation
• Maintenance of Internal audit IT tools (e.g. GitHub, Airflow, Big Query)

What we offer:

• A hybrid work model. Well-located offices (with fully equipped kitchens and bicycle parking facilities) and excellent working tools (height-adjustable desks, interactive conference rooms)
• A wide selection of fringe benefits in a cafeteria plan – you choose what you like (e.g. medical, sports or lunch packages, insurance, purchase vouchers)
• English classes that we pay for related to the specific nature of your job
• Work in a team you can always count on – we have on board top-class specialists and experts in their areas of expertise
• Team tourism, training budget and an internal educational platform, MindUp (with training courses on work organization, means of communication, motivation to work and various technologies and substantive issues)

We are looking for people who:

• Have 2-3 years of internal audit experience or risk assessment related experience (e.g. IT auditor)  
• Are experienced with assessment of IT related risks and IT background or you have an interest in IT/ new technologies and want to develop technical and audit skills (like getting CISA certification or CIA, ect.) 
• Have knowledge of basic IT concepts such as logical access management, change management, data management, DevOps, cybersecurity.
• Are highly organized and detail-oriented, with strong analytical problem-solving skills
• Will be able to handle multiple tasks in a fast-paced, deadline-driven environment, while working both independently and as part of a team
• Are able to work with deadlines, in changing environment and on various projects
• Communicate effectively in English (including report writing) - be able to explain highly technical issues to non-technical individuals
• Know Czech language, even conversational/ intermediate level - it will be a strong asset
• Are ready to travel (10 - 20%)

The following are also a plus:

• Certifications such as Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), and/or Certified Information Security Professional (CISSP)
• Practical knowledge of SQL 
• Experience with various IT frameworks/standards (e.g ISO27001, NIST, SOX, CCM(cloud control matrix), PCI DSS (The Payment Card Industry Data Security Standard), Software Assurance Maturity Model (SAMM) 

 Send in your CV and see why it is #dobrzetubyć (#goodtobehere)