You will support in audits, investigations and special reviews in order to provide an independent and objective assessment over governance, risk, assurance matters (including matters over Sustainability Reporting) and to add value by improving the operations of company.
Key Responsibilities:
- Contribute to the development of the IT audit plan and reporting packages to the Company Audit Committee.
- Contribute to the development and improvement to IT audit methodologies and programs.
- Prepare detailed audit program to lead IT audits and Integrated audits through applying risk-based auditing skills, usage of data analytics and professional judgement.
- Apply effective project management to audit assignments and other projects to complete engagements which meets quality standards, deadlines, and expectations.
- Lead audit engagements from planning to reporting, ensuring timely completion and adherence to standards.
- Provide on job training/coaching of team members for their technical development.
- Manage outsourced internal auditors.
- Evaluate underlying root causes and impact to provide and deliver high quality, concise reports, feasible and sound recommendations to the businesses, aligned with the Group's directives.
- Present audit observations at closing meetings and to the Audit Committee (where required).
- Utilise appropriate audit techniques and tools (such as data analytics) in auditing methods to evaluate organisation risk exposure and gaps.
- Manage special projects such as automation, and data analytics.
- Manage other improvement projects/initiatives to promote a collaborative environment and share knowledge and best practices learned.
Requirements:
- Degree in IT (Information Systems)/ Computer Science/Accountancy or equivalent.
- At least 8 years IT audit/IT risk management experience, either in Internal Audit or with a reputable professional service firm.
- At least 3 years in a supervisory/leadership capacity with demonstrated ability to work independently and mentor junior auditors.
- Demonstrates experience in interaction with senior management and stakeholders.
- Holders of professional certifications such as CIA, CISA and CISSP are highly desirable.
- Solid knowledge of security concepts and configurations of SAP S4/HANA, Oracle EBS, Windows, Azure AD, Linux, MS SQL, etc.
- Possesses good understanding of cybersecurity frameworks, controls and processes, including vulnerability and patch management, virus and malware protection, DLP, intrusion detection, and crisis management and incident response.
- Requires business travelling up to 30% a year.
- Good interpersonal and written/spoken communication skills.
