What skills does a ICT auditor manager need?

A ICT auditor manager needs 18 essential skills including attack vectors, audit techniques, cyber security, quality standards, ICT project management. Core competencies include Sense Making, Digital Fluency, Collaboration.

Will AI replace ICT auditor manager jobs?

The AI disruption score for ICT auditor manager is 64/100 (high risk). Some tasks may be automated but the role will evolve rather than disappear entirely.

Infocomm TechnologyInformation and communications technology professionalsISCO 2519

ICT auditor manager

ICT auditor managers monitor ICT auditors responsible for auditing information systems, platforms, and operating procedures in accordance with established corporate standards for efficiency, accuracy and security. They evaluate ICT infrastructure in terms of risk to the organisation and establish controls to mitigate loss. They determine and recommend improvements in the current risk management controls and in the implementation of system changes or upgrades.

Do You Have the Skills for This Role?

Core competency requirements inferred from the occupation's skill profile. Take the free assessment to see how you match.

Must-Have Skills (Advanced)

Sense MakingAdvanced

Digital FluencyAdvanced

CollaborationAdvanced

Developing PeopleAdvanced

European Skills Framework

Skills and knowledge areas required for this occupation based on European classification.

Essential (18)

attack vectorsattack vectorsPaths or methods that threat actors use to exploit vulnerabilities in information networks or systems from a concrete organisation and impact its availability, integrity and confidentiality. Attack ve...audit techniquesaudit techniquesThe techniques and methods that support a systematic and independent examination of data, policies, operations and performances using computer-assisted audit tools and techniques (CAATs) such as sprea...cyber securitycyber securityThe methods and best practices that protect ICT systems, networks, computers, devices, services, processes and people against unauthorised access, modification and/or denial of service of assets.quality standardsquality standardsThe national and international requirements, specifications and guidelines to ensure that products, services and processes are of good quality and fit for purpose.ICT project managementICT project managementThe methodologies for the planning, implementation, review and follow-up of ICT projects, such as the development, integration, modification and sales of ICT products and services, as well as projects...control objectives for information and related technologycontrol objectives for information and related technologyThe risk and controls framework such as Control Objectives for Information and Related Technology (COBIT), which supports decision makers to resolve the gap between business risks, requirements and te...manage IT security compliancesmanage IT security compliancesGuide application and fulfilment of relevant industry standards, best practices and legal requirements for information security.ensure compliance with legal requirementsensure compliance with legal requirementsGuarantee compliance with established and applicable standards and legal requirements such as specifications, policies, standards or law for the goal that organisations aspire to achieve in their effo...prepare financial auditing reportsprepare financial auditing reportsCompile information on audit findings of financial statements and financial management in order to prepare reports, point out improvement possibilities, and confirm governability.perform contract compliance auditsperform contract compliance auditsExecute a thorough contract compliance audit, ensuring that goods or services are being delivered in a correct and timely fashion, checking for clerical errors or missed credits and discounts and star...implement ICT risk managementimplement ICT risk managementDevelop and implement procedures for identifying, assessing, treating and mitigating ICT risks, such as hacks or data leaks, according to the company's risk strategy, procedures and policies. Analyse ...develop ICT workflowdevelop ICT workflowCreate repeatable patterns of ICT activity within an organisation which enhances the systematic transformations of products, informational processes and services through their production.monitor technology trendsmonitor technology trendsSurvey and investigate recent trends and developments in technology. Observe and anticipate their evolution, according to current or future market and business conditions.execute ICT auditsexecute ICT auditsOrganise and execute audits in order to evaluate ICT systems, compliance of components of systems, information processing systems and information security. Identify and collect potential critical issu...identify legal requirementsidentify legal requirementsConduct research for applicable legal and normative procedures and standards, analyse and derive legal requirements that apply to the organisation, its policies and products.build business relationshipsbuild business relationshipsEstablish a positive, long-term relationship between organisations and interested third parties such as suppliers, distributors, shareholders and other stakeholders in order to inform them of the orga...develop audit plandevelop audit planDefine all organisational tasks (time, place and order) and develop a checklist concerning the topics to be audited.manage standard enterprise resource planning systemmanage standard enterprise resource planning systemCollect, manage and interpret data relevant for companies related to shipping, payment, inventory, resources and manufacturing using specific business management software. Such software as Microsoft D...

Optional (23)

information structureinformation structureThe type of infrastructure which defines the format of data: semi-structured, unstructured and structured.systems development life-cyclesystems development life-cycleThe sequence of steps, such as planning, creating, testing and deploying and the models for the development and life-cycle management of a system.ICT quality policyICT quality policyThe quality policy of the organisation and its objectives, the acceptable level of quality and the techniques to measure it, its legal aspects and the duties of specific departments to ensure quality.JavaScriptJavaScriptThe techniques and principles of software development, such as analysis, algorithms, coding, testing and compiling of programming paradigms in JavaScript.ICT security standardsICT security standardsBest practices and guidelines established for securing information and communication technology (ICT) systems and data. Standards as is the case of ISO 27000 series, provide a framework for implementi...PHPPHPThe techniques and principles of software development, such as analysis, algorithms, coding, testing and compiling of programming paradigms in PHP.web programmingweb programmingThe programming paradigm that is based on combining markup (which adds context and structure to text) and other web programming code, such as AJAX, javascript and PHP, in order to carry out appropriat...ICT security legislationICT security legislationThe set of legislative rules that safeguards information technology, ICT networks and computer systems and legal consequences which result from their misuse. Regulated measures include firewalls, intr...organisational resilienceorganisational resilienceThe strategies, methods and techniques that increase the organisation's capacity to protect and sustain the services and operations that fulfil the organisational mission and create lasting values by ...information confidentialityinformation confidentialityThe mechanisms and regulations which allow for selective access control and guarantee that only authorised parties (people, processes, systems and devices) have access to data, the way to comply with ...legal requirements of ICT productslegal requirements of ICT productsThe international regulations related to the development and use of ICT products.AJAXAJAXThe techniques and principles of software development, such as analysis, algorithms, coding, testing and compiling of programming paradigms in AJAX.cloud technologiescloud technologiesThe technologies which enable access to hardware, software, data and services through remote servers and software networks irrespective of their location and architecture.ICT process quality modelsICT process quality modelsThe quality models for ICT services which address the maturity of the processes, the adoption of recommended practices and their definition and institutionalisation that allow the organisation to reli...use markup languagesuse markup languagesUtilise computer languages that are syntactically distinguishable from the text, to add annotations to a document, specify layout and process types of documents such as HTML.coach employeescoach employeesMaintain and improve employees' performance by coaching individuals or groups how to optimise specific methods, skills or abilities, using adapted coaching styles and methods. Tutor newly recruited em...implement ICT security policiesimplement ICT security policiesImplement statements, assertions or rules that specify the appropriate use and protection of the ICT assets and systems from an organisation. These ICT security policies cover topics such as data clas...manage changes in ICT systemmanage changes in ICT systemPlan, realise and monitor system changes and upgrades. Maintain earlier system versions. Revert, if necessary, to a safe older system version.develop information security strategydevelop information security strategyCreate company strategy related to the safety and security of information in order to maximise information integrity, availability and data privacy.ensure information privacyensure information privacyDesign and implement business processes and technical solutions to guarantee data and information confidentiality in compliance with legal requirements, also considering public expectations and politi...develop ICT test suitedevelop ICT test suiteCreate a series of test cases to check software behaviour versus specifications. These test cases are then to be used during subsequent testing.train employeestrain employeesLead and guide employees through a process in which they are taught the necessary skills for the perspective job. Organise activities aimed at introducing the work and systems or improving the perform...implement corporate governanceimplement corporate governanceApply a set of principles and mechanisms by which an organisation is managed and directed, set procedures of information, control flow and decision making, distribute rights and responsibilities among...