Senior IT Auditor - Marseille, France - CMACGM
Description
Led by Rodolphe Saadé, the CMA CGM Group, a global leader in shipping and logistics, serves more than 420 ports around the world on five continents.
With its subsidiary CEVA Logistics, a world leader in logistics, and its air freight division CMA CGM AIR CARGO, the CMA CGM Group is continually innovating to offer its customers a complete and increasingly efficient range of new shipping, land, air and logistics solutions.
Committed to the energy transition in shipping, and a pioneer in the use of alternative fuels, the CMA CGM Group has set a target to become Net Zero Carbon by 2050.
Through the CMA CGM Foundation, the Group acts in humanitarian crises that require an emergency response by mobilizing the Group's shipping and logistics expertise to bring humanitarian supplies around the world.
Present in 160 countries through its network of more than 400 offices and 750 warehouses, the Group employs more than 155,000 people worldwide, including 4,000 in Marseilles where its head office is located.
THE ROLE
Reporting to the Group Head of IT Audit, the Senior IT Auditor is primarily responsible for independent 3rd Line of Defense (LOD) oversight of IT & Cybersecurity-related audit activities.
Typical assignments include:
IT Organization and Governance
Project Management & Software Development Lifecycle
IT Operations, Support and Maintenance
Cybersecurity & Privacy
Business Continuity and Disaster Recovery Plans
The position has a global and strategic view of the Company's IT and Cybersecurity practices and emerging risks as well as how these may impact the Company's strategic initiatives and business process activities.
The Senior It Auditor/IT Internal Audit Manager takes a holistic view of the business processes to ensure that all aspects of IT and Security-related risks are included within Internal Audit Department's audit universe and IT/Security risk-based assessment and audit plan.
This position works with 1st and 2nd LOD functions throughout the CMA CGM Group departments to ensure risks are adequately identified, controlled and issues are properly evaluated and remediated timely.
The Senior IT Auditor/IT Internal Audit Manager provides objective risk centric assurances with respect to the design and/or operating effectiveness of risk management practices, governance processes and the system of internal controls associated with IT and Security-related audit activities.
RESPONSIBILITIES
Plans, executes, and reports on IT and Security-related audit projects that are new or complex.
When necessary, identifies and analyzes risks, prioritizes and plans (including development of audit scope and risks, controls, and test work program) the audit work.
Conducts audit interviews, observes operations, documents, and analyzes procedures and controls.
Performs audit tests, prepares appropriate work papers, develops audit recommendations, and reviews them with appropriate management, and prepares audit deliverables.
Collaborates with other Internal Audit personnel as well as reports and communicates results to key stakeholders.
Provides overarching guidance and direction in the preparation, execution, and reporting of the IT and Cybersecurity risk-based audit plan.
Utilizes and manages sourced third-party providers.
Serves as the primary liaison to sourced IT and cybersecurity-related audit work by providing appropriate oversight on the quality and depth of work being performed by the third party.
Communicates proactively with relevant 1st and 2nd LOD functions (including IT & Cybersecurity), Internal Audit's team members and other key stakeholders.
May assist in other day-to-day activities and/or projects, such as the audit schedule or preparing report deliverables for presentation to the Senior Management/Audit committee.
Transversal Responsibilities:
Supports the Internal Audit Department in evaluating and recommending improvements to business practices, processes and control procedures.
Assists in the acquisition and maintenance of audit tools (e.g., TeamMate+).
Sustains professional and technical knowledge with the idea of expanding this knowledge, personal growth and development through continuing professional education efforts.
The increased knowledge may occur through attendance at external trainings, seminars, webinars, conferences, as well as reviewing professional publications, establishing personal networks and participating in professional organizations.
Acts as a role model for the Company's values and demonstratePlus d'emplois de CMACGM
-
Manager of The Service Manager Team
Marseille, France - il y a 3 semaines
-
Alternance - Junior Product Owner
Marseille, France - il y a 2 semaines
-
Chargé Service Clients
Le Havre, France - il y a 3 semaines
-
Contrôleur/contrôleuse de Gestion
Marseille, France - il y a 1 semaine
-
Stage - Product Owner
Marseille, France - il y a 1 semaine
-
Apprenticeship - Junior Maritime Flow Analyst
Marseille, France - il y a 10 heures