IT Auditor (Cybersecurity) – Business Assurance

ACG_3622_JOB Our client is a leading technology company who is looking for a qualified candidate to join their firm. Plan and carry out on-site information security audits at supplier factories in Vietnam, covering network and system controls, endpoint and device management, access and account administration, physical security, and data protection practices. Independently manage the full audit process, including pre-audit preparation, factory briefing and meetings, on-site inspection, evidence collection, and submission of post-audit deliverables. Prepare all audit deliverables in English within the agreed timelines, including Audit Reports with findings and control references, Meeting Minutes (MoM), and daily Activity Reports. Consistently and accurately apply the client’s proprietary security standards by mapping on-site observations to specific control requirements and providing clear supporting evidence. Communicate with factory representatives in a professional and constructive manner throughout the audit process, while ensuring objectivity and factual accuracy in all findings. Promptly escalate significant findings to the project lead in line with established programme protocols. Maintain complete and auditable records of all audit activities in the designated project management system. Support team quality review activities to ensure consistency and accuracy of audit outputs. Requirements Male candidates are required Minimum of 4 years of professional experience in information security auditing, IT compliance, or supply chain security assessment. Proven experience in independently conducting on-site audits at manufacturing or technology facilities. Solid working knowledge of key information security controls, including network segmentation and access control, endpoint security and MDM, account lifecycle management, logging and audit trails, and data protection. Experience applying a structured audit methodology, covering audit planning, evidence collection, finding documentation, and reporting, with strong accountability for the quality of deliverables. Proficient in both Vietnamese and English; Mandarin Chinese proficiency is an advantage. Bachelor’s degree or higher in Information Security, Computer Science, Engineering, or a related field. Preferred Professional certification: CISSP, or equivalent. Experience auditing within the electronics manufacturing or technology supply chain sector. Familiarity with proprietary client-specific security frameworks (in addition to standard frameworks such as ISO 27001). Contact: Giau Nguyen Due to the immense number of applications, only shortlisted candidates will be contacted.