Technology & Cybersecurity Audit Manager

ROLE OVERVIEW

The Manager – Technology & Cybersecurity Audit is responsible for leading and executing technology and cybersecurity audits to assess the adequacy and effectiveness of IT controls, cybersecurity defenses, and related processes. The Manager will collaborate with IT, cybersecurity, and business stakeholders to identify risks, evaluate controls, and recommend enhancements to protect critical systems and data.

REQUIREMENTS SUMMARY

• Minimum of 10 years of experience with at least 6 years in a managerial role.
• Develop and execute a comprehensive risk-based audit plan covering IT infrastructure, cybersecurity, applications, and emerging technologies.
• Ensure quality, consistency, and timely execution of audit deliverables.
• Demonstrated ability to engage with stakeholders and align Internal Audit activities with other Lines of Defense.
• Strong background in auditing, internal controls, and risk management processes.
• Experience with integrated audits and continuous control monitoring in a complex business environment.

ROLE COMPETENCIES & ACTIVITIES

The Technology & Cybersecurity Audit Senor Manager responsibilities will include, but not be limited to:

Technical Audit Skills

• Lead and mentor a team of technology and cybersecurity auditors across various technology & cybersecurity domains.
• Identify and assess technology and cybersecurity risks across the enterprise.
• Collaborate with the Enterprise Risk Management (ERM) team to integrate IT risks into the overall risk assessment process.
• Ensure compliance with relevant audit standards, methodologies, and regulations.
• Develop clear, concise, and actionable reports that outline risks, control deficiencies, root causes, and recommended remediation steps.
• Collaborate with the Data Analytics and Continuous Audit team to integrate data-driven insights into audit planning and execution.
• Prepare and present audit findings, risk assessments, and recommendations to senior management.
• Maintain a proactive approach to identifying emerging risks, regulatory changes, and industry trends impacting audit processes.

Methodology and Best Practices

• Maintains current knowledge of the International Professional Practices Framework (IPPF) and integrates its technical requirements into relevant audits.
• Adopts and promotes a risk-based approach to annual audit planning, making adjustments as needed to reflect emerging risks and priorities.
• Supports updates to the NIA Charter, ensuring alignment with internal and external audit standards and organizational objectives.
• Contributes to the development, implementation, and enhancement of the NIA's Audit Methodology to ensure relevance and effectiveness.
• Drives the continuous improvement of audit practices by supporting the Quality Assurance Improvement Programme (QAIP).
• Identifies and incorporates global best practices into audit methodologies, ensuring the Internal Audit function remains future-focused and aligned with industry advancements.

Stakeholder Engagement and Knowledge Sharing

• Shares knowledge across the function and NIA to ensure alignment and best practice adoption.
• Collaborates with IA Heads of Departments and team members to foster strong relationships and ensure the effective implementation of an aligned assurance framework.
• Develops relationships across NEOM and externally to enable effective knowledge sharing within Internal Audit and NEOM.

Departmental Leadership

• Play an influential role in executing departmental strategies, ensuring alignment with NEOM's and NIA's business goals to support sustainable growth and operational excellence.
• Act as a trusted advisor to leadership, providing actionable insights and recommendations to enhance governance, mitigate risks, and ensure emerging risks are promptly escalated and reported to audit leadership.
• Lead the planning and execution of audit plans for the function, ensuring timely delivery of impactful results and clear reporting to key stakeholders.
• Manage and develop a high-performing team of audit professionals, fostering a collaborative culture focused on innovation, accountability, and continuous learning.
• Assist the Director by managing special projects, departmental initiatives, and ad hoc activities to provide assurance and address emerging priorities.
• Drive the adoption of advanced audit methodologies and technologies, ensuring their integration into the audit processes to enhance efficiency and outcomes.

Corporate Governance

• Ensure effective governance frameworks are established and maintained to promote good standards of propriety, stewardship, risk management, and accountability in a fast-paced and dynamic environment.
• Drive alignment between governance practices and operational priorities to enhance organizational resilience.
• Support and guide assurance champions across NEOM to embed robust internal controls and raise awareness of good corporate governance practices at all levels.
• Work closely with management across NEOM to assess risks and develop practical, continuous mitigation plans that address both current and emerging risks in a high-pressure setting.
• Facilitate team participation in broader risk management activities and workshops, ensuring assurance services across the second and third lines of defense are integrated and effectively coordinated.

Culture and Values

• Embrace NEOM's culture and Values
• Act with honesty and integrity by following best practices, and upholding the robust standards and expectations set out in NEOM's Code of Conduct.
• Maintain fair, ethical and professional work practices in accordance with NEOM's Values and Code of Conduct.
• Adhere to NEOM's Policies, procedures, and controls to ensure compliance with rules.

EXPERIENCE & QUALIFICATIONS

Knowledge, Skills and Experience

• Minimum ten (10) years of experience, including a minimum of six (6) years of experience directly managing audit staff or a comparable combination of management experience in a relevant field.
• Professional certifications – Certified Internal Auditor (CIA) or Certified Information Systems Auditor (CISA).

Desirable experience:

• Strong analytical skills to identify risks, assess controls, and evaluate complex IT processes.
• Deep understanding of IT environments: on-premise, cloud, hybrid infrastructures, and emerging technologies.
• Knowledge of network security principles, including firewalls, IDS/IPS, endpoint protection, encryption, and zero-trust architectures.
• Proficiency in auditing operating systems (Windows, Linux, Unix), databases (Oracle, SQL Server, MongoDB), and enterprise applications (ERP, CRM, and custom applications).
• Understanding of cybersecurity tools such as SIEM, DLP, IAM, vulnerability scanners, and cloud security posture management (CSPM) platforms.
• Ability to align technology audit activities with broader business objectives and enterprise risk management strategies.
• Ability to manage relationships with auditees and gain positive stakeholder feedback.

Qualifications

• Relevant Bachelor's Degree.
• Relevant Professional Memberships/Accreditation.