What's new

IT AUDITOR - Advice needed

I

Inswing

Local Club Star
Joined
Mar 4, 2016
Runs
2,004
Recently done with my BS in comp science and my aim is to become IT auditor but i don't even know A about internal auditing, so how much i have to study about internal auditing in order to excel in this field ?
 
What country are you in? CISA is a qualification that deals with this stuff.
 
Moiza said:
What country are you in? CISA is a qualification that deals with this stuff.
Click to expand...

Pakistan. Yup I know that and my aim is to be cisa certified but i cant do it without any experience or knowhow so i just want to ask that without any knowledge about auditing can i excel in this field and how much time it will take to get things start going
 
I would suggest that you join one of the big 3 (AFF, EY/Ford Rhodes or KPMG). Once you have two to three years of solid audit experience you can go for your CISA certification.
 
May I ask why wouldn't you want to become a software engineer? Computer Science is literally the degree that gets you that job, and despite myself not knowing much about IT Auditor, I am fairly certain there are a lot more software engineer jobs available and with higher pay. Especially if you get into a company like Google, they pay astronomically.
 
Little Master said:
I would suggest that you join one of the big 3 (AFF, EY/Ford Rhodes or KPMG). Once you have two to three years of solid audit experience you can go for your CISA certification.
Click to expand...

Just gave my interview in KPMG they have offered me 3 month internship my final interview will be next week InshALLAH.

One question: I maybe hired as a network administrator or IT security analyst , how beneficial they will be for me to groom as an IT auditor
 
ahsan17 said:
May I ask why wouldn't you want to become a software engineer? Computer Science is literally the degree that gets you that job, and despite myself not knowing much about IT Auditor, I am fairly certain there are a lot more software engineer jobs available and with higher pay. Especially if you get into a company like Google, they pay astronomically.
Click to expand...


Developing is something which doesn't excites me, never liked developing during my graduation period
 
Inswing said:
Pakistan. Yup I know that and my aim is to be cisa certified but i cant do it without any experience or knowhow so i just want to ask that without any knowledge about auditing can i excel in this field and how much time it will take to get things start going
Click to expand...
Unless your are a chartered accountant trainee, the best you'll be able to do is fetch photocopies for seniors. I see this everyday in Ferguson (Pwc), interns are treated really bad. You may or not get any experience at all. I speak from what I see everyday, you may get chances, however it's very unlikely.

The biggest disadvantage of your field is that even if you become a CISA qualified even then most of the high paying system auditing will be done by qualified CAs. These are the norms of the market.
 
Moiza said:
Unless your are a chartered accountant trainee, the best you'll be able to do is fetch photocopies for seniors. I see this everyday in Ferguson (Pwc), interns are treated really bad. You may or not get any experience at all. I speak from what I see everyday, you may get chances, however it's very unlikely.

The biggest disadvantage of your field is that even if you become a CISA qualified even then most of the high paying system auditing will be done by qualified CAs. These are the norms of the market.
Click to expand...

Inswing said:
Developing is something which doesn't excites me, never liked developing during my graduation period
Click to expand...


IT auditors are different mate he is most likely gonna become an information security/cyber security auditor.. You don't have to be a CA to be that lol.. I started my career in network line and now I have moved on to pre sales but a lot of my friends are auditors in PWC, kpmg, eny etc.. They are paid very well mostly everyone is paid 20L+ PA..
[MENTION=140383]Inswing[/MENTION]

Network administrator is fine just make sure to keep your focus on your ultimate aim and dont get stuck with network admin profile.. Auditing is difference from daily administration so make sure you learn the basic fundamentals of infrastructure and how it works and then do CISA or CISSP and move into big 4 auditing profile.. Don't spend more than 4 years in network admin profile..
 
big_gamer007 said:
IT auditors are different mate he is most likely gonna become an information security/cyber security auditor.. You don't have to be a CA to be that lol.. I started my career in network line and now I have moved on to pre sales but a lot of my friends are auditors in PWC, kpmg, eny etc.. They are paid very well mostly everyone is paid 20L+ PA..
[MENTION=140383]Inswing[/MENTION]

Network administrator is fine just make sure to keep your focus on your ultimate aim and dont get stuck with network admin profile.. Auditing is difference from daily administration so make sure you learn the basic fundamentals of infrastructure and how it works and then do CISA or CISSP and move into big 4 auditing profile.. Don't spend more than 4 years in network admin profile..
Click to expand...

I know all that but everything in Pakistan is unique. Any job, be it plain audit or IT audit goes to a CA if it's paying good. The Pakistani CA have an extremely strong and an almost unbreakable monopoly so anything that pays good never goes to anyone else. There are many CISAs going around with CA degrees so if there is a job they will be preferred over plain CISAs.

Moreover you have these guys auditing and providing services to most companies in the country so they usually come to know of jobs before anyone else so that also puts you at a disadvantage. The only real option in Pakistan to be an IT auditor without a CA degree is to work at these big 4 firms but they pay very less and everyday there makes you want to kill yourself. Plus Pakistani market is not as developed tech wise as India so IT auditing work is comparatively quite less to begin with.

In house jobs for IT auditors are definitely available but I dont know how good they pay. If the goal of the OP is on the External audit side or consultancy side then I think it's quite a big gamble.
 
Moiza said:
I know all that but everything in Pakistan is unique. Any job, be it plain audit or IT audit goes to a CA if it's paying good. The Pakistani CA have an extremely strong and an almost unbreakable monopoly so anything that pays good never goes to anyone else. There are many CISAs going around with CA degrees so if there is a job they will be preferred over plain CISAs.

Moreover you have these guys auditing and providing services to most companies in the country so they usually come to know of jobs before anyone else so that also puts you at a disadvantage. The only real option in Pakistan to be an IT auditor without a CA degree is to work at these big 4 firms but they pay very less and everyday there makes you want to kill yourself. Plus Pakistani market is not as developed tech wise as India so IT auditing work is comparatively quite less to begin with.

In house jobs for IT auditors are definitely available but I dont know how good they pay. If the goal of the OP is on the External audit side or consultancy side then I think it's quite a big gamble.
Click to expand...



Wow that is very weird what would a CA know about IT security/infrastructure to audit it? It's like a carpenter being asked to build a bridge.. Pretty weird but like you said it's unique to Pakistan so I guess there might be some reasons.. Pay here is pretty well for IT auditors with 8-10 years experience you can get 20-30L INR that's like 35-50lakh Pakistani rupees I assume that's a pretty good amount in Pakistan?
 
Moiza said:
Unless your are a chartered accountant trainee, the best you'll be able to do is fetch photocopies for seniors. I see this everyday in Ferguson (Pwc), interns are treated really bad. You may or not get any experience at all. I speak from what I see everyday, you may get chances, however it's very unlikely.

The biggest disadvantage of your field is that even if you become a CISA qualified even then most of the high paying system auditing will be done by qualified CAs. These are the norms of the market.
Click to expand...

big_gamer007 said:
IT auditors are different mate he is most likely gonna become an information security/cyber security auditor.. You don't have to be a CA to be that lol.. I started my career in network line and now I have moved on to pre sales but a lot of my friends are auditors in PWC, kpmg, eny etc.. They are paid very well mostly everyone is paid 20L+ PA..
[MENTION=140383]Inswing[/MENTION]

Network administrator is fine just make sure to keep your focus on your ultimate aim and dont get stuck with network admin profile.. Auditing is difference from daily administration so make sure you learn the basic fundamentals of infrastructure and how it works and then do CISA or CISSP and move into big 4 auditing profile.. Don't spend more than 4 years in network admin profile..
Click to expand...

big_gamer007 said:
Wow that is very weird what would a CA know about IT security/infrastructure to audit it? It's like a carpenter being asked to build a bridge.. Pretty weird but like you said it's unique to Pakistan so I guess there might be some reasons.. Pay here is pretty well for IT auditors with 8-10 years experience you can get 20-30L INR that's like 35-50lakh Pakistani rupees I assume that's a pretty good amount in Pakistan?
Click to expand...

Im doing internship in one of big 4 KPMG and i hope i will get the job too based on my work InshALLAH , my initial aim is to do CCNA routing and switching then CCNA security and then go for MS in cyber security and after that i want to do CISA m i on right path ?

P.S i have met with few CISA's and CA's and few IT professionals all of them have said there isnt much problem regarding to IT auditing but your security and risk management knowledge should be perfect to excel in this field.

Correct me if i'm wrong
 
Last edited:
Moiza said:
I know all that but everything in Pakistan is unique. Any job, be it plain audit or IT audit goes to a CA if it's paying good. The Pakistani CA have an extremely strong and an almost unbreakable monopoly so anything that pays good never goes to anyone else. There are many CISAs going around with CA degrees so if there is a job they will be preferred over plain CISAs.

Moreover you have these guys auditing and providing services to most companies in the country so they usually come to know of jobs before anyone else so that also puts you at a disadvantage. The only real option in Pakistan to be an IT auditor without a CA degree is to work at these big 4 firms but they pay very less and everyday there makes you want to kill yourself. Plus Pakistani market is not as developed tech wise as India so IT auditing work is comparatively quite less to begin with.

In house jobs for IT auditors are definitely available but I dont know how good they pay. If the goal of the OP is on the External audit side or consultancy side then I think it's quite a big gamble.
Click to expand...

Are you from karachi ?
 
Inswing said:
Im doing internship in one of big 4 KPMG and i hope i will get the job too based on my work InshALLAH , my initial aim is to do CCNA routing and switching then CCNA security and then go for MS in cyber security and after that i want to do CISA m i on right path ?

P.S i have met with few CISA's and CA's and few IT professionals all of them have said there isnt much problem regarding to IT auditing but your security and risk management knowledge should be perfect to excel in this field.

Correct me if i'm wrong
Click to expand...
Yes please be very good at security, that is probably the biggest concern now a days. Do you plan to work in the firm on a long term basis? The problem is that the good work directly goes to the firm because of their sheer influence, I think you may know a little of what I'm talking about considering you're working in a big firm. And you may also know how kanjoos the partners are, they never let any good work go anywhere else.

I'm from islamabad.
 
Moiza said:
Yes please be very good at security, that is probably the biggest concern now a days. Do you plan to work in the firm on a long term basis? The problem is that the good work directly goes to the firm because of their sheer influence, I think you may know a little of what I'm talking about considering you're working in a big firm. And you may also know how kanjoos the partners are, they never let any good work go anywhere else.

I'm from islamabad.
Click to expand...

Yes i know that , lets see if they will appoint me as their employee currently i'm just on internship and that even due to REFERENCE :D on initial basis i'm not at all looking at salary my initial aim is just to do CCNA R& , MS in cybersecurity and CCNP sec and once im done with all this ill go for CISA. I want to become an IT sec specialist.
 
Advise needed.

Anyone here in cyber-security field/ soc analyst etc?

I’m looking to complete the Comptia A+, Network+ and Security+ exams with no IT experience except a qualification in IT A levels. My field is actually law but I’m looking to make a career change due to my passion in IT etc.

Has anyone done these exams or anyone working in the cybersecurity / IT field in the UK that can advise me.
 
You must log in or register to reply here.

Similar threads

Slim
Ethnic enclaves in the west poisoning the society
Replies
13
Views
613
iPakistani
iPakistani
Ball Blazer
“There are no friendships on the field”: Mohammad Amir
Replies
15
Views
768
BouncerGuy
BouncerGuy
D
The family issues - My father and sister
Replies
71
Views
2K
Dulex9
D
sweep_shot
Health benefits of sun rays exposure
Replies
8
Views
384
sweep_shot
sweep_shot
K
LOI versus Test Cricket: Format Preference for Asian Nations
Replies
34
Views
967
kron
K
Back
Top