Head Cyber & IT

Key Responsibilities1. Benchmarking with Best Practices

• Align cyber and technology assurance approaches with global standards and leading frameworks.
• Translate framework requirements into practical audit and control testing procedures.
• Continuously update playbooks and maturity models based on emerging practices

2. Enterprise Risk Coverage

• Support business audit teams in scoping and testing IT processes and controls.
• Use riskbased sampling and evidencedriven analysis to validate design and operating effectiveness

3. Cyber & IT Risk Governance / Assurance

• Define audit priorities aligned with standards, board expectations, threat landscape, and technology evolution.
• Build and refresh a riskbased assurance plan using threat intelligence, criticality, control maturity, and past audit insights.
• Ensure audit observations translate into clear ownership and risk acceptance decisions.

4. Capability Building

• Develop tools, templates, training, and analytical mechanisms to enhance auditor and stakeholder capability.

5. Regulatory & Compliance Alignment

• Ensure alignment with internal audit standards and regulatory/board mandates.
• Map and test controls based on regulatory and contractual requirements.
• Produce governanceready reporting for Board and Audit Committee review.

6. HighRisk Coverage

• Ensure focused coverage of critical cyber and technology risk areas across businesses.
• Identify highrisk domains based on exposure, criticality, history, and threat levels.
• Validate remediation and perform closure verification.