Skip to content
ESCO occupation

ICT auditor manager

Back to ESCO occupations

ICT auditor managers monitor ICT auditors responsible for auditing information systems, platforms, and operating procedures in accordance with established corporate standards for efficiency, accuracy and security. They evaluate ICT infrastructure in terms of risk to the organisation and establish controls to mitigate loss. They determine and recommend improvements in the current risk management controls and in the implementation of system changes or upgrades.

2519.2 ISCO 2519 ESCO source
Competences
42
Groups
4
Essential
19
Optional
23

Competences and skills

42 ESCO relations
Essential knowledge 6 competences

Occupation specific

1 competence
control objectives for information and related technology

The risk and controls framework such as Control Objectives for Information and Related Technology (COBIT), which supports decision makers to resolve the gap between business risks, requirements and technical issues.

digital
ESCO source

Sector-specific

3 competences
attack vectors

Paths or methods that threat actors use to exploit vulnerabilities in information networks or systems from a concrete organisation and impact its availability, integrity and confidentiality. Attack vectors may include social engineering tactics such as phishing mails or pretexting, technical exploits as SQL injection as well as buffer overflow attacks.

digital
ESCO source
cyber security

The methods and best practices that protect ICT systems, networks, computers, devices, services, processes and people against unauthorised access, modification and/or denial of service of assets.

digital
ESCO source
ICT project management

The methodologies for the planning, implementation, review and follow-up of ICT projects, such as the development, integration, modification and sales of ICT products and services, as well as projects relating technological innovation in the field of ICT.

digital
ESCO source

Cross-sector

2 competences
audit techniques

The techniques and methods that support a systematic and independent examination of data, policies, operations and performances using computer-assisted audit tools and techniques (CAATs) such as spreadsheets, databases, statistical analysis and business intelligence software.

digital
ESCO source
quality standards

The national and international requirements, specifications and guidelines to ensure that products, services and processes are of good quality and fit for purpose.

ESCO source
Essential skills and competences 13 competences

Occupation specific

0 competences

No competences in this bucket.

Sector-specific

6 competences
develop ICT workflow

Create repeatable patterns of ICT activity within an organisation which enhances the systematic transformations of products, informational processes and services through their production.

digital
ESCO source
ensure adherence to organisational ICT standards

Guarantee that the state of events is in accordance with the ICT rules and procedures described by an organisation for their products, services and solutions.

digital
ESCO source
execute ICT audits

Organise and execute audits in order to evaluate ICT systems, compliance of components of systems, information processing systems and information security. Identify and collect potential critical issues and recommend solutions based on required standards and solutions.

digital
ESCO source
implement ICT risk management

Develop and implement procedures for identifying, assessing, treating and mitigating ICT risks, such as hacks or data leaks, according to the company's risk strategy, procedures and policies. Analyse and manage security risks and incidents. Recommend measures to improve digital security strategy.

digital
ESCO source
manage IT security compliances

Guide application and fulfilment of relevant industry standards, best practices and legal requirements for information security.

digital
ESCO source
manage standard enterprise resource planning system

Collect, manage and interpret data relevant for companies related to shipping, payment, inventory, resources and manufacturing using specific business management software. Such software as Microsoft Dynamics​, SAP ERP, Oracle ERP.

digital
ESCO source

Cross-sector

7 competences
build business relationships

Establish a positive, long-term relationship between organisations and interested third parties such as suppliers, distributors, shareholders and other stakeholders in order to inform them of the organisation and its objectives.

ESCO source
develop audit plan

Define all organisational tasks (time, place and order) and develop a checklist concerning the topics to be audited.

ESCO source
ensure compliance with legal requirements

Guarantee compliance with established and applicable standards and legal requirements such as specifications, policies, standards or law for the goal that organisations aspire to achieve in their efforts.

ESCO source
identify legal requirements

Conduct research for applicable legal and normative procedures and standards, analyse and derive legal requirements that apply to the organisation, its policies and products.

ESCO source
monitor technology trends

Survey and investigate recent trends and developments in technology. Observe and anticipate their evolution, according to current or future market and business conditions.

ESCO source
perform contract compliance audits

Execute a thorough contract compliance audit, ensuring that goods or services are being delivered in a correct and timely fashion, checking for clerical errors or missed credits and discounts and starting procedures for cash recovery.

ESCO source
prepare financial auditing reports

Compile information on audit findings of financial statements and financial management in order to prepare reports, point out improvement possibilities, and confirm governability.

ESCO source
Optional knowledge 14 competences

Occupation specific

0 competences

No competences in this bucket.

Sector-specific

12 competences
AJAX

The techniques and principles of software development, such as analysis, algorithms, coding, testing and compiling of programming paradigms in AJAX.

digital
ESCO source
cloud technologies

The technologies which enable access to hardware, software, data and services through remote servers and software networks irrespective of their location and architecture.

digital
ESCO source
ICT process quality models

The quality models for ICT services which address the maturity of the processes, the adoption of recommended practices and their definition and institutionalisation that allow the organisation to reliably and sustainably produce required outcomes. It includes models in a lot of ICT areas.

digital
ESCO source
ICT quality policy

The quality policy of the organisation and its objectives, the acceptable level of quality and the techniques to measure it, its legal aspects and the duties of specific departments to ensure quality.

digital
ESCO source
ICT security legislation

The set of legislative rules that safeguards information technology, ICT networks and computer systems and legal consequences which result from their misuse. Regulated measures include firewalls, intrusion detection, anti-virus software and encryption.

digital
ESCO source
ICT security standards

Best practices and guidelines established for securing information and communication technology (ICT) systems and data. Standards as is the case of ISO 27000 series, provide a framework for implementing effective security controls, including access control, risk assessment and incident management, as well as to provide compliance of anorganisation.

digital
ESCO source
information confidentiality

The mechanisms and regulations which allow for selective access control and guarantee that only authorised parties (people, processes, systems and devices) have access to data, the way to comply with confidential information and the risks of non-compliance.

digital
ESCO source
information structure

The type of infrastructure which defines the format of data: semi-structured, unstructured and structured.

digital
ESCO source
JavaScript

The techniques and principles of software development, such as analysis, algorithms, coding, testing and compiling of programming paradigms in JavaScript.

digital
ESCO source
organisational resilience

The strategies, methods and techniques that increase the organisation's capacity to protect and sustain the services and operations that fulfil the organisational mission and create lasting values by effectively addressing the combined issues of security, preparedness, risk and disaster recovery.

ESCO source
PHP

The techniques and principles of software development, such as analysis, algorithms, coding, testing and compiling of programming paradigms in PHP.

digital
ESCO source
web programming

The programming paradigm that is based on combining markup (which adds context and structure to text) and other web programming code, such as AJAX, javascript and PHP, in order to carry out appropriate actions and visualise the content.

digital
ESCO source

Cross-sector

2 competences
legal requirements of ICT products

The international regulations related to the development and use of ICT products.

ESCO source
systems development life-cycle

The sequence of steps, such as planning, creating, testing and deploying and the models for the development and life-cycle management of a system.

digital
ESCO source
Optional skills and competences 9 competences

Occupation specific

0 competences

No competences in this bucket.

Sector-specific

7 competences
develop ICT test suite

Create a series of test cases to check software behaviour versus specifications. These test cases are then to be used during subsequent testing.

digital
ESCO source
develop information security strategy

Create company strategy related to the safety and security of information in order to maximise information integrity, availability and data privacy.

ESCO source
ensure information privacy

Design and implement business processes and technical solutions to guarantee data and information confidentiality in compliance with legal requirements, also considering public expectations and political issues of privacy.

ESCO source
implement corporate governance

Apply a set of principles and mechanisms by which an organisation is managed and directed, set procedures of information, control flow and decision making, distribute rights and responsibilities among departments and individuals, set corporate objectives and monitor and evaluate actions and results.

ESCO source
implement ICT security policies

Implement statements, assertions or rules that specify the appropriate use and protection of the ICT assets and systems from an organisation. These ICT security policies cover topics such as data classification, password management, access control and incident response.

digital
ESCO source
manage changes in ICT system

Plan, realise and monitor system changes and upgrades. Maintain earlier system versions. Revert, if necessary, to a safe older system version.

digital
ESCO source
use markup languages

Utilise computer languages that are syntactically distinguishable from the text, to add annotations to a document, specify layout and process types of documents such as HTML.

digital
ESCO source

Cross-sector

2 competences
coach employees

Maintain and improve employees' performance by coaching individuals or groups how to optimise specific methods, skills or abilities, using adapted coaching styles and methods. Tutor newly recruited employees and assist them in the learning of new business systems.

ESCO source
train employees

Lead and guide employees through a process in which they are taught the necessary skills for the perspective job. Organise activities aimed at introducing the work and systems or improving the performance of individuals and groups in organisational settings.

ESCO source