IT Auditor

HIGH DemandMEDIUM AI RiskGROWING in SL· Rs.155k+ /mo

For those who want to apply IT expertise in a governance context — combining technology knowledge with professional standards and regulatory impact.

About This Role

Audits the security and reliability of an organization's information technology systems and data integrity.

A Day in the Life

Assess the effectiveness of IT controls, identify risks in systems and processes, ensure regulatory compliance, and report findings to management and audit committees.

  • Plan and execute IT audit engagements
  • Assess general IT controls (GITC)
  • Review application controls and access management
  • Test cybersecurity and data protection controls
  • Evaluate IT governance frameworks
  • Prepare audit reports and management letters
  • Follow up on prior audit findings
  • Liaise with external auditors on IT components

Work Environment

OFFICETeam: SMALLFORMALRemote: MEDIUM

Governance and risk-focused environment. High professional standards. Works with internal audit, risk, and C-suite. Requires independence and integrity.

Typical hours: 45h/week · WLB score 7/10 · OCCASIONAL overtime

Year-end audit periods are busier. Generally predictable workload.

Skills Required

Technical Skills

ISO 27001SQL DatabaseSIEM ToolsNetwork SecurityData Analysis

Soft Skills

Analytical ThinkingAttention to DetailCommunication SkillsCritical Thinking

Tools & Software

ACL AnalyticsIDEA Data AnalyticsSAP GRCExcelTeamMateCaseWare

Salary in Sri Lanka (LKR / month)

Entry LevelRs.90k – Rs.130k/mo
Mid-LevelRs.155k – Rs.240k/mo
SeniorRs.240k – Rs.450k/mo
Entry: IT Audit AssociateMid: IT AuditorSenior: Senior IT Auditor / IT Audit Manager

Typical progression: 2yr to mid · 6yr to senior

Global Salary (USD / year)

Entry Level$4k – $7k/yr
Mid-Level$8k – $15k/yr
Senior$15k – $28k/yr

Top Markets

USAUKAustraliaUAESingapore

Market Outlook

GROWING

Regulatory requirements from CBSL and SEC driving demand for IT auditors in banks and listed companies.

Hiring: MEDIUM

Commercial BankSampath BankCBSLPwC Sri LankaDeloitteKPMGErnst & Young

GROWING

IT audit demand growing with regulatory complexity globally. Big 4 firms always recruiting CISA-certified professionals.

Entry Requirements

Sri Lanka

Min. EducationDegree
Experience1-2 years in IT or internal audit

Preferred

B.Sc. IT or AccountingCISAISO 27001

Global

Min. EducationDegree
Experience2-3 years IT audit or risk

Preferred

CISACISSPCIAISO 27001 Lead Auditor

Helpful Certifications

CISA (Certified Information Systems Auditor)CISSPISO 27001 Lead AuditorCIACISM

Entrepreneurship & Freelancing

Freelance: MEDIUMRemote: MEDIUMCapital: NONE

Freelance earnings: $40–$120/mo (USD)

Platforms (SL)

LinkedInUpwork

Business Ideas

  • IT audit consulting firm
  • Compliance advisory practice

Side Income Ideas

IT audit consultingCompliance training deliveryCISA exam preparation coaching

Strong demand from banks and listed companies for independent IT audit expertise.

Risks & Challenges

AI / Automation Risk

MEDIUM

LONG TERM

Burnout Risk

LOW

Job Security (SL)

HIGH

Data analytics in auditing is growing but audit judgment and risk assessment remain human.

Burnout Causes

Audit season peaksCompliance pressure

Physical Health Risks

Sedentary work

Mental Health Risks

Regulatory responsibility

How to Mitigate

  • Get CISA certification
  • Learn data analytics for auditing (ACL, IDEA)
  • Build knowledge of COBIT and NIST frameworks

Is This Career For You?

IT or accounting students who want a professional audit career with clear qualifications and strong job security.

Personality Types

ISTJINTJESTJ

Core Motivations

Ensuring system integrityProtecting organisational governance

What You'll Love

  • High professional status
  • Clear certification path
  • Regulatory importance

What's Challenging

  • Audit season intensity
  • Independence constraints

At a Glance

SL Salary (entry)Rs.90k – Rs.130k/mo
SL Salary (senior)Rs.240k – Rs.450k/mo
Global (senior)$15k – $28k/yr
SL DemandGROWING
WLB Score7/10
Hours/week~45h
Remote WorkMEDIUM

AI Replacement Risk

MEDIUM

LONG TERM

Sectors

Private