北京招聘

Performance Items岗位职责：

1．Documenting IT general control (ITGC) processes and developing a risk matrix including the identification of key controls.

编写ITGC流程的控制文档及包括确认关键控制在内的风险控制矩阵。

2．Developing and executing ITGC test procedures to validate control design and operating effectiveness.

发展及执行ITGC测试流程和确认内控设计及执行的有效性。

3．Identifying and evaluating control gaps and making recommendations to the management.

确认和评估控制差距及向管理层提供建议。

4．Assist the internal Audit manager in developing risk assessments and annual plans with specific emphasis on IT systems and applications.

协助内部审计经理评估信息管理系统及应用方面的相关风险并制定审计计划。

5．Plan, perform, and lead IT and IT related operational audits to evaluate business risks and determine if adequate IT controls are designed and operating effectively to mitigate these risks. The IT Auditor will execute audits of complex IT infrastructures (including but not limited to: Information system management, Systems development, Systems operation, Information asset management, network management, Information security, Control of outsourcing, Contingency plans, System usage, End user computing (EUC), System audit).

计划、主导、实施信息管理审计及信息系统相关的运营审计以评估业务风险并判断是否存在足够的控制点且这些控制点是否被有效的实施以降低业务风险。IT审计师需对信息系统的各方面施行审计（包括但不限于以下方面：主机系统、数据库安全、网络安全、变更管理、补丁管理、灾难恢复、操作系统、项目管理及实施、其他相关安全管理)

6．Prepare detailed working papers that evidence the work performed and any issues that arise.Draft, prepare, and submit audit findings and discuss them with the auditee and top management .

准备详细的工作底稿作为实施审计活动及提出审计发现的依据，撰写、准备及提交审计发现并与管理层讨论。

Requirements任职条件：

-At least 3 years of IT audit experience in Big Four, SOX ITGC testing experience is preferred

-Education background or working experience in network infrastructure and configuration (e.g. Firewall, Router, Switch)

-Strong analytical skills in Operation system (Windows，Linux，AIX), Database（Oracle 9i, 10g,11g, SQL Server）and middle-ware

-Experience in intranet and internet penetration technology

-Familiar with International security framework and standards (e.g. Cobit, COSO, ISO27001)

-Strong analytical skills, problem solving skills, positive attitude and fluent communication ability

-English and Mandarin need to be spoken and written fluently

-Bachelor degree or above in Engineering/Computer Science/Management Information Systems or equivalent education

-Professional certifications preferred (CISA, CISSP, CISM, CIA, CPA etc.)

丰田汽车金融（中国）有限公司是首批通过中国银监会批准的汽车金融公司之一，是丰田金融服务株式会社在中国的独资企业，是丰田汽车公司的全资金融服务机构。在全球37个国家和地区，为超过2700万丰田及雷克萨斯汽车的用户提供专业汽车贷款服务，是享誉全球的汽车金融公司。

自2005年进入中国市场以来，积累了成熟、优质的汽车金融服务经验。今后将继续以国际视野和深厚实力为根基，满怀诚意为客户服务。