IT Audit Specialist : Group Internal Audit (2 positions)
Northern Suburbs, Cape Town
R580k- R800k pa
Execute audit assignments independently in specialist technical and general controls areas. Taking full responsibility for assignment planning, fieldwork, reporting and client interaction / client relationship management.
Supervision of audit engagement teams (Junior IT Auditors) ensuring that audit engagements are completed according to predefined audit schedules and deadlines.
Taking full responsibility for team setup, supervision and review and sign off of audit deliverables and workpapers. Including staff performance appraisals per assignment.
Timely delivery of audit assignments while adhering to the Internal Audit methodologies and quality requirements.
Draft audit reports discussed and agreed with Management, with appropriate comments and target dates obtained.
Assisting with drafting Risk Forum and Audit Committee reports and control conclusion summaries per process audited
Supervision of junior staff in technical security audits in the following areas :
Operating system reviews (Windows / AIX / Solaris / RedHat Linux).
Database reviews (Oracle / SQL / DB2 /
Network, Firewall and Router reviews.
General controls reviews (Change management, logical access controls, etc.)
Assist the Senior Internal Business Auditors with application controls audits / reviews
Assist the Internal Audit Management team with :
Performance evaluations of internal auditors;
Strategy execution, etc.; and
Training and Development.
Assist with annual planning, providing input into the annual IT audit plans for the respective businesses.
Qualification Knowledge & Experience
Graduate studies, with a relevant professional qualification ( CISA, CA or CIA )
Minimum 5 - 7 years relevant IT Audit experience .
Basic knowledge of financial services .
Good understanding of the auditing disciplines.
Understand all auditing standards as it relates to assignment execution.
Thorough understanding of the CobiT methodology .
Detailed knowledge on how to perform a control adequacy review (CAR) and how to draw up audit programmes.
Experience in performing application controls reviews and audits on system interfaces.
Technical expertise on operating systems (Windows & AIX), Databases (Oracle, DB2, SQL or Sybase).
Experience in performing general controls reviews.
Experience in performing security audits on Firewalls, Routers and vulnerability scanning.
System development audits
Analysis and reporting on results
Recommendations to various stakeholders