Technology Audit Specialist

Getir Perakende Lojistik A.Ş.

Getir is a tech company. We are writing the book on super-fast delivery and ‘democratizing laziness’. Our journey started in 2015 by simply bringing groceries to your door, via our simple/sophisticated app. All within minutes. Today, Getir brings hot food, and well your weekly groceries. We see what you need, then we make it!

The main misconception of an auditor is that we thrive on “catching” people doing non-compliant actions. This may be true for some… This however is not the case for Getir’s internal auditors, we thrive on improvement areas and finding root causes for future prevention.

At Getir, Internal Audit strives to enhance the business processes and protect the organizational value of the company. It’s all about enabling effective risk management across Getir and partnering with teams and leadership to establish a strong control environment. We aspire to be a team of control experts who deliver objective and reliable insights to support the growth of Getir.

If you are excited about what you’ve read, we’re excited for you too! Keep reading to find out what you’ll need to become a Technology Audit Specialistat Getir.

What you’ll do:

• Perform technology risk assessments

• Participate in technology audits including assessment of ITGC, user access management controls

• Perform forensic controls in ethical investigations

• Accumulate data, maintain records and prepare reports of audit projects

• Obtain, analyze and evaluate technology process flowcharts, risk-control matrices, reports, etc.

• Perform regulatory technology audits, as necessary

• Review technology contracts
  
  

What you need:

• Bachelor’s Degree in Computer Engineering and other related fields

• 2-5 years of experience working as an technology auditor or technology risk advisor in a professional services / Big 4 firm or in a prominent company within its industry

• Knowledge and expertise on Technology Processes and Systems such as Applications, Databases, Operating Systems, Network, Information Security

• Working knowledge of information and security principles, practices, frameworks (COBIT, PCI DSS, ITIL, ISO/IEC 27001, etc.)

• Experience in compliance audit such as KVKK & familiarity with GDPR 

• Following certifications will be an asset: CISA, CISM, CGEIT, CRISC, ITIL, CISSP, CIA, ISO27001, ISO22301

• Good command of written and spoken English
  
  

Wow to have’s!

• A good sense of humor

• An allergy to the ‘comfort zone’

• Purple & Yellow as your favorite colors

• Willing to get your hands dirty