IT Audit Lead

Amartha is a technology company focused on creating shared prosperity by developing digital financial solutions for the grassroots economy. Founded in 2010 as a microfinance institution, Amartha connects rural, women-led micro-enterprises with affordable capital. Amartha is expanding as a tech company, building a microfinance ecosystem that connects to the growing digital economy through capital, investment, and payment services. By boosting the competitiveness of micro and small entrepreneurs, Amartha empowers women-led MSMEs, creates jobs, and fosters inclusive economic growth.

About the role: 

As an IT Audit Lead, you will get a chance to help Amartha on implementing IT Internal Audit activities and demonstrate your keen ability to identify the root cause of the problem. You will work alongside the other internal audit team, risk division, and monitor Amartha’s operational activities to deliver  improvement of business process quality of Amartha. 

Responsibilities: 

• Ensure IT Internal Audit plan is executed properly and sufficient audit evidence and/or documentation is  obtained to support audit findings. 
• Collect and analyze data to detect anomaly transactions, deficient controls, duplicated effort,  extravagance, fraud, or non-compliance with laws, regulations, and management policies.
• Implement systems and procedures related to the IT audit process
• Demonstrate the ability to identify the root cause of audit process. 
• Prepare audit working papers in complete, systematic, and timely manner and ensure those are  documented in accordance with professional standards. 
• Prepare a detailed IT audit report. 
• Providing insightful recommendations to minimize or eliminate risks to shareholders.
• Monitor open issues and ensure implementations of recommended internal control measures.
• Conduct advisory services process improvement to the business cluster and produce its report.
• Maintain good relations with the Auditee and third counterparts during the implementation of internal  audit assignment.

• A degree in Technology or Business, such as Information Technology, Information Systems, or Computer Science, from a reputable university.
• Over 6 years of experience in auditing IT controls, including General IT Controls, Application Controls, and Security Controls in similar industries.
• Experience with Internal Control over Information Security Management (ISMS), including ISO 27001 reviews, Cyber Security, and IT regulatory compliance.
• Strong technical knowledge in IT and Information Security reviews, with relevant certifications (CISA, CRISC, ISO27001 lead auditor/implementor) as a plus.
• Familiarity with IT governance and risk frameworks like COBIT, ITIL, TOGAF, and ISO 31000.
• Knowledge of internal auditing, risk management, and business continuity.
• Ability to handle multiple projects, take initiative, and be proactive.
• High integrity, quick learner, agile, honest, team-oriented, detail-focused.
• Strong analytical, problem-solving, and root cause analysis skills.
• Good project management experience in system development.
• Excellent written and verbal communication skills

At Amartha, we are dedicated to creating a workplace that celebrates diversity, ensures equity, and fosters inclusion. We believe that diverse perspectives—shaped by factors such as gender, age, race, ethnicity, education, culture, and life experiences—drive innovation and growth.

We actively welcome individuals from all backgrounds to join us in building an environment where everyone feels respected, valued, and empowered. Our commitment is to provide equal opportunities and foster a sense of belonging that enables our employees to thrive and make meaningful contributions.