
Internal Audit Analyst – Mid-level
Nuclea
full-time
Posted on:
Location Type: Hybrid
Location: São Paulo • Brazil
Visit company websiteExplore more
Tech Stack
About the role
- Plan and execute internal audits focused on Information Technology and Information Security, acting as the third line of defense, including:
- Mapping processes, identifying and assessing IT risks
- Assessment of the design and operational effectiveness of controls (ITGCs and security controls)
- Performing audit tests and preparing working papers in accordance with Internal Audit methodology
- Preparing audit reports with risk-based conclusions and recommendations
- Monitoring action plans and validating remediations implemented by audited areas
Requirements
- Education: Bachelor's degree in Information Technology, Computer Science, Information Systems, Engineering, Business Administration, or related fields
- Experience in Internal Audit
- Experience performing IT General Controls (ITGC) audits
- Strong knowledge of Information Security
- Familiarity with Internal Audit concepts (IIA / IPPF)
- Experience in access and identity management, including strong authentication and segregation of duties
- Knowledge of governance and security frameworks and standards (COBIT, ISO 27001, NIST, among others)
- Knowledge of Windows and Linux environments (conceptual level)
- Knowledge of networking and security solutions such as Antivirus, DLP, IPS, Web Filtering, Firewall, among others
- Critical thinking and a risk-oriented approach
- Ability to conduct medium-complexity audits
- Autonomy, organization and a sense of priorities to manage multiple audit tasks, ensuring deadlines are met and delivery quality
- Strong written and verbal communication skills, with the ability to produce clear, concise, risk-based reports and to interact effectively with technical and business stakeholders.
Benefits
- Health and Dental Insurance
- Meal allowance (Caju)
- Life Insurance
- Home Office Allowance
- Profit Sharing (PLR)
- Private Pension Plan
- Childcare Assistance
- WellHub (Gympass)
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Internal AuditIT General Controls (ITGC)Information SecurityAccess and Identity ManagementGovernance FrameworksSecurity FrameworksCOBITISO 27001NISTNetworking Solutions
Soft Skills
Critical ThinkingRisk-oriented ApproachAutonomyOrganizationPrioritizationCommunication SkillsReport WritingStakeholder Interaction