As a Manager and member of the Information Systems & Security (ISS) Audit Team, you will contribute to Statutory Audit engagements by conducting IT General Controls (ITGC) assessments and Automated Controls Reviews, delivering findings, conclusions, and supporting workpapers to Assurance Engagement Teams. In addition, you will support cross-functional engagements spanning IT Audits and Compliance Audits in the areas of Information Security, Cybersecurity, and Business Continuity – serving clients across various industries and working closely with IT Management, CISOs, and business stakeholders to identify control weaknesses and recommend practical remediation actions.

You will also contribute to the execution of data analytics procedures, support complex audit engagements, mentor junior team members, and actively participate in the continuous enhancement of the team’s methodologies and service offerings.

The key responsibilities of this role include:

Statutory Audit Support

• Contribute to the planning and execution of IT General Controls (ITGC) assessments within financial statement audit engagements

• Perform Walkthroughs and Test of Controls of ITGCs across key domains

• Assess Automated Controls and IT-dependent manual controls, providing Assurance Engagement Teams with clear, well-supported conclusions on control reliance

• Execute data analytics procedures to identify anomalies, validate data integrity, and enhance the reliability of audit conclusions

• Prepare and maintain audit workpapers in accordance with applicable professional standards and internal methodology requirements

• Liaise with client IT personnel to obtain evidence, clarify findings, and communicate preliminary observations in a timely manner

IT Audit, Compliance

• Plan and execute IT & Security internal audit engagements and compliance reviews, ensuring alignment with regulatory requirements, applicable standards, and client policies

• Conduct IT and Security Gap Assessments against recognized frameworks and standards (e.g. ISO 27001, NIST, COBIT, NIS2, DORA), providing practical and actionable recommendations

• Evaluate IT and cybersecurity control frameworks to identify weaknesses, risks, and opportunities for improvement

• Support the design, review, and enhancement of IT and Information Security policies, procedures, and governance frameworks

• Collaborate with clients' IT Management, Information Security Officers, and senior stakeholders to recommend effective risk mitigation measures and strengthen governance and cybersecurity posture

The key requirements of this role are:

• University degree in a relevant field

• Minimum 5 years of relevant professional experience in roles such as IT Auditor, SOC Analyst, Security Consultant, or related fields and at least 3 years of recent experience as a member of an IT Audit team supporting Statutory Audits within an audit firm that is a member of an international audit network.

• Professional certification CISA (Certified Information Systems Auditor) is mandatory

• Good knowledge of SAP ERP environments, particularly in the areas of User Access Management and Change Management audit

• Excellent written, verbal, and presentation skills

• Excellent command of the Greek and English language (C2 level – proven)

• Strong analytical, organizational, and problem-solving skills

• High standards of professionalism, integrity, and business ethics

• Fulfilled military obligations

Additional qualifications considered as strong assets :

• Professional certifications such as CISSP, CIA, CISM, CRISC, or ISO 27001 Lead Auditor

• Master’s degree in Informatics, Information Security, or related field

• Good knowledge of Entersoft ERP or MS Dynamics ERP environments, particularly in the areas of User Access Management and Change Management audit

• Knowledge of data analytics and Business Intelligence (BI) tools such as Alteryx, Qlik, Tableau, Power BI, or similar platforms

• Knowledge of cybersecurity frameworks and standards such as ISO 27001, NIST, COBIT, or SOC reporting frameworks

• Experience in cloud security, cybersecurity assessments, or IT risk management engagements

What’s in it for You?

At Grant Thornton Greece, we believe that great work deserves great rewards! Here’s what you can look forward to:

• 🌈 Diverse and inclusive workplace

• 🏋️‍♂️ Friendly, Dynamic Working environment

• 💰 Competitive Salary & Bonus

• 🩺 Insurance Program for all GT members

• 👩‍🏫 Fully funded Training & Professional Qualifications

• 🏖 Extra Days-off: August Freedays, Volunteering Days, Early leave days

• 🏃🏽‍♂️ Corporate Sports Teams (e.g., Running, Basketball, Volleyball)

• 🎁 Exclusive Discounts: Special offers and discounts for employees