Reporting to the Senior Manager – Technology Audits and Audit Quality, the successful candidate will be responsible for leading the delivery of IT Audits across all IT operations systems, customer support systems, Value Added Services (VAS) systems, IT infrastructure and business systems.
Roles
Plan, conduct and deliver network security audits and information systems audits of business support systems, IT operations, Value Added Services (VAS) systems, and IT infrastructure;
Manage the execution of audit engagements to ensure conformance to Internal Audit policies, standards and procedures for the delivery of high quality results within defined audit plans and budgets;
Perform audits within an Oracle ERP environment, identifying control deficiencies and providing insight for enhanced utilization of the ERP by the business and promoting continuous improvement through technology;
Provide practical and cost-effective advice to management on designing, implementing and enhancing internal controls in the area of technology;
Provide assurance on the effectiveness of tools implemented in the company to address and prevent revenue leakage;
Provide independent assurance during system implementations in the IT Operations domain;
Track implementation status of audit recommendations. Maintain partnership with clients to ensure that all audit issues are resolved within defined timelines;
Development of relevant continuous auditing routines around key areas of concern / exposure.
Job Requirements
Undergraduate degree in Computer Science, IT, Business Information Systems (or related technical / business field) from a recognized university.
Holder of Certified Information Systems Auditor (CISA) designation. Other qualifications e.g. CISM, CISSP, CRISC, CEH would be an added advantage.
6 to 8 years working experience in auditing of information systems in a reputable professional audit firm or internal audit environment.
Experience in leading teams of auditors in successfully delivering IT audit engagements.
Good knowledge of key applications supporting core business processes.
Knowledge of common IT and networking technologies (operating systems, relational databases, network/mobile technologies) including Oracle or MS SQL database, Unix / Linux / Windows etc.
Knowledge of information systems governance and security principles, frameworks and practices with an understanding of the concept of risk management.
Experience in the use of data analysis tools such as IDEA, ACL, or Teammate Analytics.
Experience in the implementation or use of Continuous Auditing and Monitoring (CACM) and Governance Risk and Compliance (GRC) tools would be an added advantage.
Knowledge of penetration testing methodologies. Experience in the execution or supervision of a vulnerability assessment or penetration testing exercises would be an advantage;
Reliable, proven self-starter with the ability to effectively manage a team.
Excellent documentation, communication and stakeholder engagement skills.
go to method of application »