Going, going, gone...

Looks like this career opportunity is no longer available. We may have filled the position or it was taken down for other reasons. We know this isn’t what you were hoping for but we have great new opportunities opening all the time.

Start a new search now!

IT Audit Manager

  • GIA - Group Internal Audit
  • Hong Kong Special Administrative Region of China
  • Cathay Pacific
  • Application Deadline
    11 Oct 2022
Role Introduction

Reports to: Head of Internal Audit

Group Internal Audit’s mission is to be a high performing, engaged team, protecting and enhancing the business’s value through risk-based and independent assurance, advice and insight. The role will be responsible for:

  • Assisting the Head of IT IA in managing external and internal resources in carrying out IT related audit assignments across the Cathay Pacific Group - its goals and objectives setting, resources planning and utilisation, responsibilities and deliverables; reporting on IT, compliance, cyber and data security, IT risk and regulatory and IT governance risk-related audits and reviews;
  • Ensure quality auditing, risk management and consulting services are delivered in order to provide high level of assurance over all types of risks across the Group
Key Responsibilities

  • Drives/Promotes the vision of Group Internal Audit (GIA) throughout close partnerships with management and working with the senior executives to develop a risk based audit plan for the Company 
  • Conducts and performs the IT risk and regulatory, IT governance and compliance and cyber and data security risk-based audits for the Group
  • Provides objective assurance and independent review on the adequacy and effectiveness of the Company’s risk management and internal control system to safeguard assets, improves cyber security and guide best practices
  • Assists the Head of IT Internal Audit to prepare high quality audit committee paper/reports for the Audit Committee meetings regularly; completes the annual audit plan as agreed by AC and any special reviews
  • High standard of quality audits is conducted through understanding of business and risks, proper identification of issues; reports are prepared timely with high quality and issues are clearly communicated and agreed with the senior management and executives with effective recommendations and solutions 
  • Assist in conducting risk assessments; identifies controls in place to mitigate identified risks and opportunities for improvements
  • Perform integrated business audit with Finance & Operation internal audit team, as appropriate

  • Degree from reputable institution and professional IT auditing qualification such as CISA or equivalent designation 
  • Minimum 8 years and preferably with broad IT Audit experience in internationally recognized accounting firms or in-house roles
  • Good knowledge of airline operations and related regulatory requirement 
  • Strong technical knowledge of risk and control in various IT domains such as IT infrastructure, Agile software development, as well as other key areas including Digital transformation, Project management, Information security and Data management
  • Good understanding of emerging technologies and associated risks (including Cloud, Cybersecurity, DevOps and AI)
  • Hands on experience in any of data analytics and business intelligence tools such as Power BI, QlikView, Alteryx, Python and O365 etc. is a definite asset 
  • Strong analytical skills, and ability to work independently and in a matrix and remote environment
  • Strong interpersonal, communication and presentation skills, including managerial courage, dealing with ambiguity 
  • A team player who is self-initiated, independent and able to meet tight schedules
  • Ability to create and maintain good working relationships with teammates and all levels of staff members from various business units
  • CISM, CISSP, CPA and/or CIA preferred
  • Fluent in writing and speaking in English and in Chinese as a bonus
  • Occasional duty travel will be required (up to 30%)
Personal & Application Information

Cathay Pacific is an Equal Opportunities Employer. Personal data provided by job applicants will be used strictly in accordance with our personal data policy and for recruitment purposes only. Candidates not notified within eight weeks may consider their application unsuccessful. All related information will be kept in our file for up to 24 months. A copy of our Personal Information Collection Statement will be provided upon request by contacting our Data Protection Officer.

Please note that with effect from 1 June 2022 onwards, all Cathay employees and contractors who work in Cathay City and all other Cathay Group Company premises in Hong Kong must have received a third dose of COVID 19 vaccine.  Being tested regularly for COVID-19 is not an option. Consideration will be given to those who are unable to get vaccinated for valid medical reasons.

Apply now