Vice President - Internal Audit (CPX)

Overview:

As the Vice President – Internal Audit, you will lead CPX’s internal audit function, ensuring robust governance, integrity of financial and operational controls, compliance with regulatory requirements, and alignment with cybersecurity risk imperatives. You will report to the Audit Committee / Board and partner closely with senior leadership (CFO, CISO, CTO, Legal, Risk) to safeguard assurance over all CPX operations, systems, and projects—especially where technology, data security, and resilience are concerned.

Responsibilities:

Strategic Audit Leadership
• Set the vision, strategy, and roadmap for the internal audit function that aligns with CPX’s business model and growth in cyber & physical security.
• Ensure audit efforts cover all aspects of CPX’s operations (cybersecurity services, physical security, OT, cloud, risk/compliance, data privacy, etc.)

Risk-Based Audit Planning & Execution
• Develop, maintain, and execute a robust risk-based internal audit plan.
• Audit core functions: financial, operational, technology/IT, cybersecurity, physical security, OT environment, project delivery, compliance & regulation.
• Assess strengths/weaknesses of internal controls, highlight areas for improvement, and monitor remediation.

Cybersecurity & Technology Risk Oversight
• Work closely with CPX’s CISO / tech leadership to provide independent assurance on security posture, controls over cloud environments, data protection, incident response, threat detection, and resilience.
• Evaluate security frameworks in use, alignment with relevant standards (ISO 27001, NIST, IEC 62443, etc.), regulatory obligations (local & international).

Governance, Compliance & Regulatory Assurance
• Ensure compliance with local UAE cyber, data protection, and financial regulations.
• Oversee audits that verify CPX meets contractual, regulatory, and client-based obligations (e.g. for government, banking, energy sectors).
• Provide transparent reports to Audit Committee / Board with actionable insights.
• Maintain Commercial and Delivery efficiency i.e. revenue and sales against headcount

Stakeholder Engagement & Assurance Reporting
• Maintain strong relationships with external auditors, regulators, clients, and partners.
• Deliver high-impact, clear, and timely reporting, including risk assessments, audit findings, KPIs, remediation progress.

Team Leadership, Improvement & Culture
• Lead, mentor, grow, and structure a high-performing internal audit team with expertise in cybersecurity, physical security, financial, and operational audits.
• Drive continuous improvement, innovation, automation in audit processes.
• Promote a culture of strong control, ethical behavior, compliance, and risk awareness across CPX.

Qualifications:

Skills/Certifications (Technical & Non-Technical)
• Deep familiarity with cybersecurity risk, IT General Controls (ITGC), cloud security, data protection, threat detection & response.
•Experience dealing with regulatory environments in the UAE / GCC / Middle East preferred.
•Strong strategic thinking, stakeholder management, communication skills; ability to influence at board level.

Minimum Work Experience
• Significant experience in the cybersecurity / physical security / OT / technology services sector.
• 20+ years of progressive experience in internal audit, risk management, compliance, or assurance roles.
• At least 10 years at senior leadership or executive level in internal audit / assurance.

Education
•Professional certifications such as CIA, CISA, CISM, CISSP, or equivalent are highly desirable.