< return to our job listings

IT Audit & Compliance Specialist (m/w/d)

Permanent Employment, Experienced Position - Timișoara

As an IT Audit and Compliance Specialist at Manage Now, you will play a key role within the Governance team, overseeing our Internal Control System (ICS) and supporting the successful delivery of internal and external audits. Your responsibilities will include coordinating ISAE 3402 audits for our hybrid cloud solutions and service offerings, as well as audits for customers operating in highly regulated sectors such as finance and pharmaceuticals. 
 
Working closely with cross-functional stakeholders, including the DevOps team, Customer Success Management, external auditors, and customers, you will help strengthen our compliance framework and contribute to the continuous improvement of our processes, solutions, and products from an assurance and compliance perspective.
Your mission
  • Participate in the planning, execution, and follow-up of ISAE audits (e.g., ISAE 3000 / ISAE 3402). 
  • Perform Test of Design (ToD) and Test of Effectiveness (ToE), including reviews of documentation, processes, and evidence. 
  • Coordinate and collaborate with internal departments, service owners, and external auditors. 
  • Analyze audit findings, define corrective actions, and monitor their implementation. 
  • Ensure audit-ready documentation, including process descriptions, policies, and supporting evidence. 
  • Support internal and external audits, reviews, and assessments. 
  • Contribute to the continuous improvement of audit, compliance, and control processes. 
  • Manage, maintain, and further develop Internal Control System (ICS), particularly within IT and IT service management environments.
Your profile
  • Strong knowledge of and experience with System and Organization Control (SOC)and/or ISAE audits, Internal Control Systems (ICS), and audit methodologies. 
  • Understanding of common control frameworks (e.g., COBIT,GermanC5, ISO-based control structures). 
  • Experience with IT audit processes and methods, such as ToD/ToE, evidence collection, and mitigation of audit findings.
  • Basic to advanced understanding of IT processes, IT services (especially IT Service Management frameworks such as ITIL 4), and governance structures. 
  • Proficiency in handling documentation, policies, and process descriptions. 
  • Ideally, experience working with external auditors or internal audit functions. 
  • Structured and detail-oriented approach to work, particularly regarding audits and evidence management. 
  • Strong analytical skills for evaluating controls, risks, and deviations. 
  • Ability to document and present complex topics in a clear and understandable manner. 
  • Strong organizational and coordination skills in audit and assurance environments. 
  • Excellent communication skills when interacting with business stakeholders and auditors. 
  • Ability to assert positions while maintaining a collaborative approach. 
  • High level of responsibility and commitment to quality. 
  • Discretion, integrity, and reliability. 
  • Willingness to continuously develop expertise in IT compliance and IT audit.
  • Professional experience in IT audit, compliance, IT governance, or risk management. 
  • Certifications such as CISA, CIA, CISM, or equivalent are considered an advantage.
Why us?
  • Modern workplaces and equipment
  • Flexible working hours and extensive home office regulations
  • Dynamic company development
  • Comprehensive training and further education opportunities
  • Collaborative and supportive team culture with a strong focus on knowledge sharing and professional growth
  • Additional annual leave days beyond the statutory entitlement

Contact Information
Apply now!
If you have any questions, feel free to contact:
karriere@manage-now.de
Apply now

ABOUT US

Manage Now is a leading IT service and managed services provider for enterprises and public institutions that want to strategically develop their IT while ensuring stable operations at the same time. With over 50 years of combined IT and project experience, we take responsibility for complex IT landscapes. In doing so, we combine consulting, operations, and transformation in an integrated approach, creating the foundation for IT that functions reliably while remaining controllable. Our integrated portfolio ranges from sovereign cloud and hybrid and multi-cloud to SAP and application management, as well as security and modern workplace environments, creating the foundation for IT that functions reliably while remaining controllable. Organizations can decide for themselves how much responsibility they want to hand over, from individual services to full end-to-end operational responsibility.