NN Group
Where will you be working ?
Corporate Audit Services is the internal audit department of NN Group. Located in Europe and Japan. We operate in a cooperation model between local business audit teams and central specialist teams, one of them being IT Audit. We are a diverse and International group of close to 100 auditors and specialists. Our purpose is to provide an independent assessment of the design and effectiveness of NN's internal controls, risk management and governance to make risk visible, with the ultimate aim of helping to mitigate the risks faced by the businesses in achieving their business objectives.
The IT Audit team within CAS is responsible for conducting IT audits in order to provide independent assurance on the various IT organisations and IT systems of NN across the different business lines and on NN Group. The team of approximately 15 IT auditors are highly skilled professionals and are located in The Hague. The team is ambitious to be best in class and develops and uses audit tools like CAATTs and scanning tools for penetration testing and vulnerability scanning.
What will you be doing?
CAS IT Audit is looking for junior and senior technical IT auditors. Your main responsibilities consist of executing assessments and reviews of the technical IT infrastructure in the various parts of NN Group and NN business units, but also within external IT providers. Assessments related to IT general controls, IT projects and system development are also possible. The IT audits are performed in close co-operation (joined) with the business audit colleagues , especially application audits. You will report the IT audit results to the highest management levels within the NN organisation.
- Experienced IT auditor, team player
- In depth technical knowledge on a variety of IT platforms, databases and network components (such as Unix, AS400, Windows, SQL, Oracle, Firewalls). Experience with ISAE3402/SOC1/SOC2 assessments, Agile and Mobile Apps development and Cloud computing (Azure, AWS, SAP HEC) is a pre.
- Hands on experience with penetration testing on complex technical infrastructures including web sites
- Excellent problem analysis
- Fluency in Dutch and English (written and spoken)
- Good communication skills, customer focus
- Excellent report writing skills
- Able and willing to travel as part of the job
- Huge drive and self-motivation
- Bachelor’s or master’s degree within IT and/or auditing
- Certification in general audit in particular CIA (Certified Internal Auditor)
- Certification in IT auditing in particular RE (Register EDP auditor), CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional)
- Other relevant certifications like CEH (Certified Ethical Hacker) and Cloud certifications
- Hands-on working experience (2-5 years) within an IT or IT Audit organisation
- Experience in reviewing computer security (physical and logical), computer centre, telecommunications, databases, websites, VMware, Windows, Unix and networking environments
- Expertise in using CAATTs (computer assisted audit tools and techniques) and security scanning tools such as Nessus, Metasploit etc.
- Demonstrated experience of working in a team environment
- A professional, dynamic and international work environment
- Highly skilled colleagues will help you to further develop your knowledge and experience
- Challenging and complex assignments on state-of-the-art technology by using professional audit tools and techniques
- Outstanding facilities to follow professional trainings and education