Senior Auditor - IT Internal Audit

About ZainCash

ZainCash Iraq is a leading mobile wallet in Iraq and recognized as Forbes top Fintech company of 2023 and 2024 as well as GSMA’s Best Mobile Innovation Supporting Humanitarian Situations. The company offers a range of consumer and business services including local and international money transfer, bill payments, companion payment cards, payroll, aid disbursement, and more. For more information, please visit www.zaincash.iq.

 Responsibilities:

• Apply internal audit standards and IT audit best practices to ensure audit quality and compliance.
• Participate in the identification and evaluation of IT-related risks across various systems and processes.
• Contribute to the development of Risk and Control Matrices (RCM) and audit programs tailored to IT operations.
• Document and maintain audit working papers and templates throughout different audit phases for review and approval.
• Conduct data analysis to evaluate the effectiveness and efficiency of IT internal controls and recommend risk mitigation measures.
• Perform detailed fieldwork to audit financial and operational processes, including system access, change management, data security, and IT governance.
• Examine internal controls, collect and analyze evidence, and ensure compliance with relevant standards and regulations.
• Supervise the work and tests performed by the IT internal audit officer.
• Prepare and present comprehensive IT audit reports with actionable recommendations.
• Follow up on the implementation of audit recommendations and report on their status.
• Support in the development of a risk-based IT audit plan.
• Perform internal audit missions in accordance with ISO 27001, ISO 22301, ISO 20000:1.

• (Iraqi Nationals Only)

• Education & Qualifications:  Bachelor’s degree in information technology, Computer Science, Computer Engineering, Information Systems, Information Security.
• Industry Experience: Minimum 2 years of experience preferable in banks, financial institutions, or telecommunication sector.
• Years of Experience:  5+ years in IT internal audit, information security, network management, database administration, IT operations.

Technical Skills & Tools:

• Solid understanding of IT infrastructure, including servers, networks, systems, databases and operations.
• Proficiency in data analytics tools and techniques; ability to analyze complex systems and datasets.
• Experience with database tools such as SQL Server and Oracle, and understanding of database integrity and security.
• Basic knowledge of cybersecurity principles, including encryption, firewalls, access control, and threat detection.
• Basic knowledge of relevant regulatory, IT professional standards and compliance requirements (including ISO 27001, ISO 22301, PCI-DSS, ISO 20000-1 and COBIT 2019).

Language Proficiency: Native Arabic (written/spoken) / Upper Intermediate English (written/spoken).