Technology Auditor – Digital Platforms & DevOps

About the role

We are looking for a senior Technology Auditor to join our Internal Audit function in Egypt. You will independently assess the effectiveness of IT controls, digital frameworks, and technology‑enabled processes across the bank, ensuring that technology risks are properly managed and regulatory requirements are met.

Key responsibilities

• Plan, lead and execute audits of digital platforms, DevOps pipelines and business banking systems.
• Assess IT general controls (ITGCs), application controls and cybersecurity frameworks.
• Develop audit plans that identify key technology risks, control points and critical systems.
• Evaluate risks related to digital transformation, cloud environments, APIs and system integrations.
• Review DevOps processes, including CI/CD pipelines, release management, change controls and automation.
• Identify control weaknesses, security gaps and operational inefficiencies and recommend remediation.
• Prepare detailed audit reports with risk ratings and actionable improvement plans.
• Validate closure of audit findings and ensure sustainable remediation.
• Provide risk advisory support on technology projects, system implementations and digital product launches.

Required profile

• Bachelor’s degree in IT, Computer Science, Engineering or related field (Master’s preferred).
• Professional certifications such as CISA, CISSP, CIA or equivalent.
• 7–10 years of experience in IT/Technology Audit within banking or financial services.
• Strong knowledge of digital banking platforms, online/mobile channels and business banking systems.
• Hands‑on experience with DevOps environments, CI/CD tools and agile methodologies.
• Solid understanding of cybersecurity principles, cloud computing and API security.
• Familiarity with regulatory frameworks, IT governance and data‑protection standards (e.g., ISO 27001, NIST).
• Proven ability to lead audits and engage senior technology and business stakeholders.

Required skills

• Digital platforms
• DevOps and CI/CD pipelines
• Agile methodologies
• Automated controls
• Cybersecurity frameworks
• IT General Controls (ITGC)
• Cloud computing
• API security
• ISO 27001
• NIST standards
• IIA audit standards