1) Minimum bachelors degree level or holds a relevant professional qualification or relevant experience (typically at least 6 years) in information security (GRC).
2) Educated to bachelors degree level, holds a relevant professional qualification, and may have a postgraduate qualification such as an MSc, MBA, or other appropriate business, engineering, scientific or industry qualification.
3) Have knowledge and experience as below:
a. Applying specific quality standards to all tasks undertaken to ensure that deliverables are accurate and complete.
b. Principles, practices, tools, and techniques of IT auditing.