GIA IT Audit Specialist
About The Position
The World Bank Group is a unique global partnership of five institutions driven by a bold vision to create a world free of poverty on a livable planet. As one of the largest sources of funding and knowledge for developing countries, we help solve the world’s greatest development challenges. When you join the World Bank Group, you become part of a dynamic, diverse organization with 189 member countries and more than 120 offices worldwide. We work with public and private sector partners, invest in groundbreaking projects, and use data, research, and technology to bring tangible and transformative change around the globe. Group Internal Audit (GIA) helps to protect and enhance World Bank Group processes by providing independent, objective and insightful risk-based assurance and advisory services. Our IT Audit Staff are passionate about the execution and delivery of assurance and advisory engagements covering IT, Data Management, and other key strategic initiatives of the World Bank Group. This is an exciting time to join the World Bank Group’s Internal Audit Vice Presidency (Group Internal Audit – GIA). In a rapidly evolving risk environment shaped by digital transformation, emerging technologies, and increasing cyber threats, GIA plays a critical role in strengthening governance, risk management, and internal controls across WBG. We are seeking professionals who bring curiosity, sound judgment, and a collaborative mindset, and who are motivated to contribute to high-quality assurance and advisory work in complex, technology-enabled environments. IT Audit professionals at the Audit Specialist level contribute to assurance and advisory engagements across a broad range of technology domains and strategic initiatives. The role is designed for experienced professionals who can independently assess risks, execute audit procedures, and develop clear, practical, and risk-based insights in complex, technology-enabled environments.
Requirements
- At least 5 years of experience in IT audit, technology risk, cybersecurity, digital assurance, or related advisory roles, preferably in complex environments such as financial institutions, consulting firms, or international organizations
- Master’s degree or equivalent experience with Bachelor’s degree
- CISA certification required
- Experience supporting audits, advisory engagements, or projects involving technology-enabled processes, system implementations, or digital transformation initiatives
- Practical exposure to key risk domains such as cybersecurity, cloud computing, data protection, and identity and access management
- Awareness of emerging technology risks, including AI governance, automation, cloud adoption, cyber resilience, and third-party risk
- Good understanding of enterprise technology environments, including infrastructure, applications, data, and secure development practices
- Experience using data analytics or other technology-enabled audit techniques to support assurance activities
- Ability to identify and assess risks related to evolving threat landscapes, including areas such as ransomware, data privacy, and operational resilience
- Strong analytical, communication, and stakeholder engagement skills, with the ability to synthesize information and communicate clearly
- Ability to work effectively in multidisciplinary and multicultural teams, with a collaborative, adaptable, and learning-oriented mindset
- Effective oral and written communications skills
- Demonstrates a continuous improvement mindset, openness to feedback, and willingness to develop expertise in evolving business, technology, and risk environments while working collaboratively across functions.
Nice To Haves
- other relevant certifications (e.g., CISSP, CRISC, CISM, CIA, or cloud/security certifications) are strongly preferred
Responsibilities
- Leading sections of risk assessments of business units, processes, and technologies to inform audit planning
- Managing multiple audit and advisory engagements in parallel, including leading assigned workstreams with limited supervision
- Executing audit procedures across areas such as technology governance, cybersecurity, cloud and hybrid environments, data governance, enterprise platforms, and digital transformation initiatives
- Assessing risks and controls related to emerging technologies, including artificial intelligence (AI), automation, APIs, and modern application architectures
- Developing process documentation, control narratives, audit work programs, and testing approaches
- Performing control testing, conducting stakeholder interviews, and documenting audit results
- Drafting clear findings and developing practical, risk-based insights for management consideration
- Contributing to integrated audits that span business processes, systems, data, and technology domains
- Using data analytics, automation, and technology-enabled audit techniques to enhance risk assessment, testing, and insight generation.
Benefits
- a retirement plan
- medical, life and disability insurance
- paid leave, including parental leave
- reasonable accommodations for individuals with disabilities
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
