Conduct audits of IT systems, infrastructure, and processes Evaluate internal controls and identify risks or vulnerabilities Ensure compliance with regulatory standards and organizational policies