Select Any Job

IT / Information Security Audits

• Prepare IT and Information security audit plan for the year and allocate team members/execute the audit engagements.
• Prepare kick-off presentation by determining audit objectives, audit scope and audit timelines, etc. as per Group Internal Audit format.
• Support the IT internal control (IT General Controls / Application Controls) scoping and planning process (e.g., definition of approach, scope and update application map to business processes).
• Conduct walk-throughs with process owners, identify and document key risks and the related general computing controls.
• Coordinate with process owners during the field work and timely report to Audit Manager on any foreseen delays.
• Execute test steps to assess design and operational effectiveness of key controls, providing clear and concise testing documentation for review.
• Update the Audit Manager about the audit status including briefing on high-risk areas identified during the audit.
• Interpret testing results and formulate conclusions based on assessment of control deficiencies and root causes.
• Prepare the draft audit report and perform detail review before reporting of deliverable to Audit Manager/Senior Audit Manager.
• Co-ordinate with process owners to receive responses on the draft report and review the action plans to finalize the report, prepare executive summary to share with Senior Management, send post audit survey and receive feedback on the report.
• Ensure the quality assurance review of all audit deliverables in completed after the assignment.
• Provide advisory services for new process changes, business changes, etc.
• Track implementation of pending action plans against Internal Audit recommendations, prepare follow-up presentations for the management.
• Manages the development and maintenance of auditee and staff relationships through individual contacts and group meetings.
• Provide guidance to Internal Auditor in conducting audits and other audits related issues.
• Prepare all audit files including working papers, audit program, draft report as per internal audit standard.
• Ensure Internal Audit communication protocol is followed for all communication with process owners/auditees.

Operational/Functional Audits

• Participate in planning and scoping the business automated / application controls (ITACs) and configuration controls for on-going operational audits.
• Execute and test the application controls testing by conducting system walk-throughs with process owners, identify and document key risks and the related general computing controls.
• Coordinate with process owners during the field work and timely report to Audit Manager/Senior Audit Manager on any foreseen delays.
• Execute test steps to assess design and operational effectiveness of key system controls, providing clear and concise testing documentation for review.
• Update the Audit Manager about the audit status including briefing on high-risk areas identified during the audit.
• Interpret testing results and formulate conclusions based on assessment of system related control deficiencies and root causes and include the same in the Operational Audit report.

Data Analytics

• Have good knowledge of data analysis tools to identify the key risk indicators as an input for the audit assignment.
• Monitoring the key risk indicators (KRIs) reports for exception across various business segments as part of continuous control monitoring process.

• Minimum academic qualifications: Bachelor’s degree holder (computer information systems or IT related preferred).
• Working towards Professional qualifications such as CISA, CISSP, CISM or other qualification relevant to Internal Audit.
• Experience in auditing interfaces, infrastructure, cyber security, data processing and computer general controls in Oracle / ERP environment.
• Good background in computer applications.
• Minimum 5 years post qualification relevant experience.
• Technical knowledge of IT systems, including:
• ERP (Oracle EBS/Fusion/D365) etc
• Databases
• Operating Systems (Unix, Linux, Window, AS400)
• Network including VPN, LAN, WAN, WLAN, Firewalls and associated hardware
• Cloud security
• Cyber security
• APIs, Middleware, Interfaces
• Backup and Recovery systems

• Excellent verbal and communication skills including report writing.
• Strong presentation and interpersonal skills.
• Analytical thinking.
• Time Management skills.
• The ability to work effectively in cross functional teams (IT and Operational Audits) for varying periods of time building good working relationships with both colleagues and management at all levels.
• Business and process understanding.

• Working Environment: This role involves office-based work and field activities, including attending industry conferences and events.
• Internal Relationships: Collaboration with Audit managers and Process owners to ensure effective execution of audit engagements.