Security Audit & Supervision Specialist

The Security Audit & Supervision Specialist is responsible for planning and executing information security audits, control assessments, and conformance reviews in alignment with standards such as ISO 27001, ISO 22301, PCI DSS, and ITIL.
This role focuses on field auditing, process control verification, documentation review, and recommending corrective actions.
It operates in cross-functional collaboration with the Security Risk & Compliance Specialist to ensure the continuous operation of the Audit–Risk–Compliance cycle within the security governance unit.

Key Responsibilities:

• Develop and execute security audit plans for operational units.
• Review security documentation, procedures, and controls against ISO 27001, PCI DSS, and BCMS requirements.
• Record audit findings, perform root cause analysis, and develop corrective and preventive action (CAPA) plans.
• Verify the implementation and effectiveness of corrective actions in coordination with the Risk & Compliance team.
• Support BCMS drills, security testing, and vulnerability assessments.
• Contribute to the design and improvement of internal audit methodologies and audit checklists.
• Collaborate with technical and infrastructure teams to validate audit results and monitor key security indicators (KSIs).
• Prepare and deliver formal audit reports for management review and compliance committees.

Education & Experience:

• Bachelor’s degree in Computer Engineering, Information Technology, or Information Security.
• 2–3 years of experience in security auditing, internal controls, or compliance supervision.

Technical Competencies (Knowledge, Skills, and Abilities):

• Strong understanding of ISO 27001, PCI DSS, BCMS, and ITIL frameworks.
• Familiarity with audit methodologies, sampling techniques, and security control checklists.
• Ability to prepare detailed technical and managerial audit reports and document findings accurately.
• Proficiency in Excel and Power BI for data collection, analysis, and reporting.
• Basic knowledge of vulnerability assessment, access control validation, and security testing procedures.

Benefits:
Join our expert team and enjoy the following benefits:

• Opportunities for personal growth
• Seasonal gifts and incentives
• Comprehensive health insurance with no coverage limits 
• Meal and transportation allowances 
• Snacks provided 
• On-site medical and psychological support 
• Access to company banking and financial services 
• Subsidies for recreational and sports activities 
• Use of Tara and Snapp Pay organizational credits