Planning and execution of IT audits / assessment of systems, applications, and interfaces / evaluation of controls / audit reports and actionable recommendations
Evaluation of technical and organizational security measures / user and access management / protection against unauthorized access / implementation of security policies
Verification of compliance with legal requirements / analysis of data protection processes / definition of technical and organizational measures (TOMs) / training and awareness programs
Development and implementation of risk-based audit plans / prioritization of critical IT risks / integration into enterprise risk management / follow-up of remediation measures
Standardization of audit procedures / use of digital tools and data analytics / quality assurance of audit execution / reporting and communication with management
