Job Description PURPOSE OF THE JOB: This value driven Internal Audit & Advisory division is seeking to appoint an IT Audit Specialist (Independent Contractor) for a period of six (6) months to strengthen the division.
The specialist position will interact with executives and officers across the multiple business units and operations and report to the Head – IT Audit.
The incumbent will primarily be responsible for undertaking information systems audit engagements within an ERP systems environment to ensure and maintain the adequacy and effectiveness of financial and operational controls within the NLC to ensure that it is in accordance with corporate governance, ISACA standards and practices, the PFMA as well as other applicable laws and regulations and to inform the relevant stakeholders on the state of the control environment.
KEY DELIVERABLES: Perform audits of assigned functions including financial, operational and information technology audits from planning to reporting. Guide, direct, and review the work performed by other IT Audit personnel and co source partner. Make oral presentations of audit findings to management. Provide Executive Management with opinions on the effectiveness of the NLC controls. Conduct Quality Assurance Reviews on completed audits. Monitor the implementation of management actions recommended in audit reports. Maintain a database of prior audit recommendations and co-ordinate the follow-up to validate quarterly resolutions of the findings. Assist with the preparation of reports to be distributed and presented to Commissioner, EXCO, NLC Board and the Audit Committee. Requirements Relevant Degree (NQF 7) (IT/Computer Science/Information Systems/ Auditing/ Accounting/ Equivalent) and Certified Information Systems Auditor (CISA). ISACA Membership. SACA certifications (CISM, CGEIT, CRISC, CCAK) will be an added advantage.
6 Years relevant working experience in IT Audit, (external audit or internal auditing) of which 3 years must be at a supervisory level. Experience is Project Assurance reviews is essential Experience is IT Security Reviews (including database review, firewall, patch management and vulnerability management) is essential. Experience in Application Controls Review is essential.
COMPETENCIES AND SKILLS Able to plan and strategise. Solid knowledge of mentoring and coaching Solid knowledge of Quality Assurance and Improvement Program (QAIP) Knowledge of best practice frameworks (e.g., COSO, etc.
). Able to execute and oversee audits. Solid knowledge of report-writing. Knowledge of Data Analysis Must be able to compile accurate reports. Solid knowledge of the PFMA and treasury regulations Knowledge of Project Management Financial Management Manage staff effectively. Solid knowledge of professional standards (IIA) / ISACA Knowledge of research / benchmarking.