IT auditor

Lead and execute risk-based IT audits to evaluate the effectiveness of technology controls, ensure regulatory and policy compliance, and strengthen cybersecurity and operational resilience., * Plan, scope, and deliver end-to-end IT audits (applications, infrastructure, cloud, networks, databases, and end-user computing).

• Assess IT general controls (access management, change management, operations, backups, incident response) and application controls.
• Evaluate cybersecurity governance, vulnerability management, logging/monitoring, and third-party/vendor risk controls.
• Test control design and operating effectiveness; document workpapers and evidence to audit standards.
• Identify control gaps, quantify risk, and develop practical remediation recommendations with owners.
• Communicate audit results to stakeholders; prepare clear reports and track issue remediation to closure.
• Support audit planning, risk assessments, and continuous monitoring; mentor junior auditors as needed.

• IT audit expertise across ITGCs, application controls, SDLC, and cybersecurity controls.
• Framework knowledge: COBIT, ISO 27001, NIST, ITIL, and internal control concepts (e.g., SOX where applicable).
• Technical understanding of cloud platforms, identity and access management, networking, and system administration concepts.
• Analytical and documentation skills with strong report writing and stakeholder communication.
• Certifications preferred: CISA, CISSP, CISM, or equivalent., Group Audit is looking for a qualified IT audit or security professional, preferably with experience in a Financial Services environment. As ideal Senior IT Auditor candidate:
• You are capable of working independently and within a team. You are expected (in consultation with your audit team) to come to a balanced opinion and to clearly communicate the audit opinion to the auditee. You independently write reports in which the situation found, identified shortcomings and underlying root causes are clearly expressed;
• You have a curious mindset, are eager to learn and take initiative to see how things can be optimized.
• You are a strong communicator, with the ability to convey complex information clearly and concisely, in order to bring balanced assurance messages and value-adding insights;
• You are analytically strong and have an intrinsic interest to understand IT processes and systems. Cyber security is your middle name.
• You are interested in ongoing and emerging technological developments, such as AI, Cloud, Digital Resilience;
• You don't take things for granted, but want to find out the facts and alternatives. You might be interested in ethical hacking activities to find out how secure 'secure' really is;
• You have obtained a professional IT security or auditor education or qualification (Dutch or International equivalent);
• You have a good command of the English language, both written and verbally

If you choose to join our team for a new beginning, you will be joining one of the top internal audit departments in the Netherlands! We further offer a competitive salary, numerous opportunities for professional and personal growth, as well as the freedom to excel and work flexibly. Our secondary benefits are attractive and include:

• The gross monthly salary displayed above is based on a 36-hour work week, including vacation pay and benefit budget.
• The Benefit Budget is 11% of your salary. The Benefit Budget allows you to acquire additional employment benefits. If you make no purchases or reservations in the Benefit Shop in a given month, you are paid one twelfth of your Benefit Budget that month.
• Five weeks of vacation per year. You have the option to purchase an additional four weeks per year.
• Personal development Budget of € 1,000 per year, which you can accumulate up to € 3,000.
• Possibility to work from home (in consultation with your team and depending on your position).
• An annual public transport pass with free public transportation throughout the Netherlands.
• An excellent pension scheme.

As a Senior IT Auditor you will be part of ABN AMRO's global audit department Group Audit. Our team consists of approximately 140 audit professionals that execute complex audits in a fast paced and changing organisation. Your observations will lead to a balanced opinion and impactful key messages to senior management. Your views are appreciated and help the bank to move forward. While each team within Group Audit has a specific focus area, we work in multi-disciplinary teams covering end-to-end processes. We are currently looking to strengthen our IT Audit team with a technical IT auditor., As Senior IT Auditor you will be based in Amsterdam, working in a balanced hybrid mode between the ABN AMRO Head Office and your home office. You will work in a diverse team where people experience an open culture and a pro-active way of working together. We are dedicated to creating an environment where talented professionals like you can thrive and make a meaningful impact.