SUMMARY:
Assesses the design adequacy and effectiveness of the control environment and identify control gaps
POSITION INFO:
The Senior Specialist Auditor will execute the internal audit methodology and use a risk-based audit approach when performing start to end internal audit duties across all internal and partner relationships across both national and international operations. Audit engagements will comprise of IT governance reviews, skilled technical IT audits, as well as limited cybersecurity and penetration testing engagements
Key Objectives
Strategy and Planning
Continuously drive internal audit process improvement to ensure a value adding partnership with business
Identify areas of risk and provide input into the annual planning and strategic activities
Actively participate in strategic objectives and automation activities
Operational / Technical
Conduct audits in accordance with the approved Internal Audit methodology
Manage client interaction for allocated areas of scope
Attend audit team kick-off and close-out meetings
Prepare process flow and analysis documentation medium to high complexity processes
Compile business understanding documents and flow charts
Assist in conducting penetration tests and vulnerability assessments on computerized networks and systems
Assesses the design adequacy and effectiveness of the control environment and identify control gaps and opportunities for continuous improvement
Perform technical reviews across information technology areas such as infrastructure, virtualization, architecture, cloud disaster recovery and business continuity
Develop a sound understanding of business processes, risks and controls including relevant regulatory and accounting issues
Identification of process, information and control gaps and seek additional information if necessary
Ensure that information generated is accurate, valid and comprehensive prior to review and/or reporting
Documenting detailed working papers
Documenting findings and discussion with client in terms of factual correctness – asks for support where necessary
Draft and discuss own findings for inclusion in audit reports
Take responsibility to clear and finalise all own reported findings/reporting points
Review own working papers for quality and completeness before sending to the Audit Manager for review
Ensure all review queries are cleared within a reasonable timeframe expectation 48 hours
Focus on problem solving/high risk areas during the audit
Communicate any delays or difficulties experienced for corrective action
Track audit process status for allocated areas of responsibility and effectively communicate any anticipated challenges delays, etc
Communicates knowledge gained throughout the audit engagement and/or otherwise with the team members
Provide guidance and assistance to juniors
Initial review of reporting and work performed by juniors
Stakeholder Engagement
Effectively build and maintain rapport and maintain business relationships with process owners and stakeholders.
Professional and effective communication
Translating technical IT terminology into understandable and meaningful business language
Financial
Manage time in line with the allocated budget and communicate any potential delays or overruns to management
Behaviour
Be a team player
Work autonomously
Attend scheduled training
Live the Hollard Way
Take responsibility for own career and performance management
Contribute to training ideas and/or potential training deficiencies
Contribute to the social committee and attend social activities
Required Knowledge and Experience At least 4 years IT audit experience not limited to IT General Control reviews
Experience in managing stakeholders and completing the full audit lifecycle planning, fieldwork and reporting
Educational Requirements
Relevant BCom IT /BSc IT degree as a minimum, as well as one or more of the following
Certified Information Systems Auditor (CISA)
Certified Information Security Manager (CISM)
Certified Ethical Hacker (CEH)
Certified Internal Auditor (CIA) / Professional Internal Auditor (PIA)
NB! This job is now closed. You can apply for other jobs by uploading your CV.
