Senior Internal Auditor: IT

MINIMUM REQUIREMENTS:

• An NQF Level 7 qualification (B. Com/B. Sc/B-Tech/Advanced diploma) in Informatics, Internal Auditing, or Accounting
• Five years’ experience in IT Auditing.
• CISA/CISM/CRISC/CIA or related professional designation.

TECHNICAL COMPETENCIES

• Working knowledge of professional auditing standards (ISACA's IT Audit Framework and the IIA standards)
• Knowledge of IT Governance frameworks
• Knowledge of cybersecurity and information security management practices.
• Familiarity with key IT processes such as Incident and Problem Management, Change Management, and IT Asset Management
• Proficiency in data analytics and understanding automated auditing tools like ACL or IDEA.
• A good understanding of project management principles (PMBOK or PRINCE2)
• Knowledge of software development methodologies (Agile, Waterfall, DevOps)
• Ability to conduct research and apply benchmarking techniques
• Ability to advise management regarding IT governance, system vulnerabilities, and process improvements.
• Ability to write clear, concise, and comprehensive audit reports.
• Strong interviewing skills.

KEY RESPONSIBILITIES

Audit Planning

• Participate in the development of the 3yr rolling plan and annual audit plan
• Prepare a project management plan and consider deadlines and all requirements for resources, time needed to conduct audits, workforce availability and other elements affecting the schedule
• Obtain and analyse information from clients to plan engagements
• Conduct risk and control assessment of assigned department or functional area in established/required timeline
• Perform walk-through procedures to test controls
• Develop an audit programme in the planning phase, including the need for and use of questionnaires, flowcharts and other instruments for information analysis
• Use appropriate software and data analytical tools to effectively plan, execute and report on assignments
• Draft the engagement letters and audit planning Memorandum
• Review the plan with the client and assigned auditor to resolve any questions
• Write correspondence notifying the auditee being audited of the schedule, assigned individual(s), source of audit, records required and other pertinent information
• Keep abreast with and apply all relevant legislative changes, standard operating procedures, methodology and guidelines.
• Oversee allocated projects and report periodically to IA management

Audit Execution

• Execute as per the audit plan and other delegated responsibilities, e.g. proactive assurance reviews, reviews and investigations
• Source relevant information required for analysis and testing
• Establish risk-based audit programmes
• Evaluate the suitability of internal control design and make recommendations on findings
• Conducts audit testing of specified areas and identifies reportable issues and dimensions of risk
• Conducts audits within the time budgets and timeline determined as per the audit plan
• Follows up on the status of action plans as agreed with management in line with follow-up procedures.

Audit Project Quality

• Quality assures internal auditors and/or audit team outputs
• Capacitate team as appropriate to deliver on project deliverables
• Ensure that policies, procedures and guidelines, which have an impact on audits, are clearly understood while determining the level of internal compliance in terms of quality assurance standards (IIA) in line with Internal Audit methodology
• Maintain, recommend and implement improved standard operation procedures for Auditing.
• Give inputs and improvements to audit methodology and other key documents

Auditee / Engagement Management

• Effectively engage and communicate with auditee, audit team, service providers, external auditors, other stakeholders and Internal Audit management
• Ensure that internal audit activities are effectively coordinated with other assurance providers through the agreement of a time-bound combined assurance model, including internal and external audit, risk management, forensics, and compliance functions.

Audit and Management Reporting

• Decide on weaknesses and areas of improvement to report to management.
• Validate the accuracy of findings.
• Decides on the severity of weaknesses.
• Recommend solutions for improvement of processes and controls.
• Draft audit findings about needed improvements in the economy, efficiency, and effectiveness of controls, risk and governance of audit areas.
• May coordinate activities and involvement with various internal stakeholders to finalise audit reports.
• Provide feedback reports on the status of projects, highlighting significant weaknesses and suggesting improvements.

People Management

• Provide functional/technical support, advice and guidance and assist in the transfer of skills to audit staff
• Manage own and staff productivity and deliverables effectively and assume a supervisory role
• Instruct subordinates on tasks and/or activities.

EMPLOYMENT REFERENCE CHECKS

Employment reference checks are a requirement as part of SANRAL’s recruitment and selection process.

EMPLOYMENT EQUITY

Appointments will be made in accordance with SANRAL’s Employment Equity plan.

Please submit your application using SANRAL’s Career Portal: Career Portal.

Closing date for applications: 08 November 2024

Job Type: Full-time

Application Deadline: 2024/11/08