South African Government's COVID-19 Information Page at sacoronavirus.co.za.

Position Title: IT Auditor

Job Summary Statement/Purpose:
Performs IT audit reviews in line with the audit plan and IT internal audit methodologies and internal audit work. Provides advisory and consulting services as and when required.

Current Status: Active

Contract Type: Permanent

Closing Date: November 18, 2022

Click here to apply

Qualifying Criteria

Key Performance Areas (Duties & Responsibilities):

1. Performs IT Internal auditing work as assigned:
• Sasria Departments and/ or Agent Companies’ IT Internal Audit divisions
Provide advisory services through:
o Audit recommendations
o Ad hoc projects
o Participation in Risk Management sessions (RCSAs) and provide input on where IT risk management processes and controls can be improved.

2. Technical Auditing
• Assists in identifying and evaluating the risk areas in the organisation.
• Review the adequacy and effectiveness of controls using flow charts and other methods of evaluation.
• Assist in the development of audit programs or procedures by identifying risks and controls matrix (RACM) for the area to be audited.
• Conduct planning and preparation of allocated audit assignments by drafting audit start letters, opening meetings, preliminary surveys, agreeing audit scope and sign-off.
• Perform detailed reviews of IT processes and policies, infrastructure and the general control environment in accordance with the audit programmes.
• Completion of all working papers in accordance with the IT audit methodology.
• Conducts interviews, reviews document, develops and administers surveys, composes summary memos and prepares working papers.
• All findings, conclusions and recommendations are properly and sufficiently supported in working papers.
• Communicates or assists in communicating the results of audit and consulting projects via written reports and oral presentations to management.
• Complete audits in a timely manner.
• Develops and maintains productive client and staff relationships through individual contacts and group meetings.
• Pursues professional development opportunities, including external and internal training and professional association memberships, and shares information gained with co-workers.

3. Policy and Procedure development

• Provides input on improvement of strategic audit and annual plan.
• Provides input on the improvement of the audit policy and procedure manual.

Represents internal audit on:
• Company project teams.
• Internal company staff committee meetings (on request, i.e. Transformation committee and the Health and Safety committee meetings); and
• External assurance providers or organisations.
• As and when required.

4. Training and support

• Active involvement in development of own skills, through agreeing performance development plan with Senior Auditor/Supervisor and Internal Audit Manager to improve or maintain the following skills:
o Negotiating and problem-solving skills.
o Effective verbal and written communication, including active listening skills and skills in presenting findings and recommendations by audit staff; and
o Establish and maintain harmonious working relationships with co-workers, staff and external contacts.
• Assist in supervising trainees or other assigned team members.

5. Ad hoc duties

• Perform any reasonable ad hoc tasks as and when required by the Senior Internal Auditor, Internal Audit Manager or Head of Internal Audit.

Qualifications & Experience:

• B. Com (auditing) or equivalent three-year qualification.
• Postgraduate qualification (Internal audit or Informatics or Computer Science or any IT related qualification).
• Certified Information Systems Auditor (CISA) or Certified Information Security.
Manager (CISM) or any related IT certification.
• 4 years of full-time experience in IT Audit, internal audit and project audits.

Ideal:
• Insurance industry experience.

Knowledge:

• Good knowledge of and skill in applying internal auditing and accounting principles and practices, management principles and preferred broad business practices.
• Good knowledge of the Insurance Industry.
• Knowledge of the Standards for the Professional Practice of Internal Auditing and the Code of Ethics developed by The Institute of Internal Auditors.
• Knowledge of industry program policies, procedures, regulations and laws.
• Knowledge of ISACA standards
• Knowledge of IT Governance Frameworks (Cobit, ITIL)
• Knowledge of management information systems terminology, concept and practices.
• Understanding of internal control environment within the IT function.

Behavioural Skills:

• Good problem solving and negotiating skills.
• Good written and verbal communication skills.
• Project management skills.
• Basic planning skills.
• Good level presentation skills.

Attributes:

• Analytical.
• Detail oriented.
• Work well under extreme pressure and tight deadlines.
• Driven.
• Self-Starter.
• Ability to work independently as well as within a team.
• Assertive.
• Good Interpersonal skills.
• Strong business ethics, level of honesty and integrity.
• Logical.
• Diplomatic.
• Resilience and ability to deal with change.
• Cultural sensitivity.
• Strong Work ethic.
• Ability to manage and handle conflict.

Demographics:

  •  A South African citizen of any gender, preference will be given to an EE candidate.

Location of the role:

  • The role will be in Illovo, Johannesburg.