• Minimum 5 years’ experience in IT internal or IT external audit, the last 2 years in a managerial position
• Bachelor’s degree in Computer Science/Management Information Systems, Accounting, Business or equivalent combination of related work experience and education
• CPA preferred; CISA desired but not required
• Proficient in using computer software (e.g., ACL, SQL, Excel) and application systems
• Proficient in Microsoft products a plus
• Expert understanding of operational, financial, regulatory, and information technology risks and risk mitigation.
• Excellent project management skills with the ability to organize and manage multiple priorities.
• Excellent and precise communication skills (both written and oral) with demonstrated clarity in spoken and written words.
Duties and responsibilities include, but are not limited to the following:
• Reviews IT (including related operational and business risks) functions and activities, and evaluates the identified areas in order to determine and recommend the nature, scope, direction and thrust of proposed audits. Designs audit procedures to execute the related audit program, assess controls and meet audit objectives.
• Conducts assigned special audit projects and provides advisory and consulting services to management.
• Performs statistical sampling to accomplish audit procedures. Obtains, analyzes and appraises supporting data utilizing various software applications.
• Evaluates the adequacy of system controls and recommends improvements
• Ensure a system is in place which ensures that all major IT risks of the company are identified and analyzed, at least on an annual basis
• Ensures completeness of referenced working papers including related open issue tracking for completed audits
• Report to all levels of management (oral and written) on the results of audits
• Provide recommendations on the systems and procedures being reviewed, report on the findings and recommendations and align with management on these. Report audit findings and make recommendations for correcting unsatisfactory conditions, improving operations, and reducing costs.
• Prepare formal written reports expressing opinions on the adequacy and effectiveness of the system and the efficiency with which activities are carried out. Present quality audit reports with practical, actionable, and effective recommendations
• Monitor management's response and implementation. Appraise the adequacy of the corrective action taken to improve deficient conditions. When assigned, supervise, direct, counsel, and instruct assistants assigned to the audit and review their work for sufficiency of scope and accuracy.
• Report on the value for money that the company obtains in all its IT-related activities with special regard to economy, efficiency and effectiveness
• To conduct any reviews or tasks requested by the Head of Internal Audit, provided such reviews and tasks do not compromise the independence or objectivity of the internal audit function
• To provide management with an opinion on the IT internal controls in the company
• Lead kick-off, interim and final close-out meetings with Senior Management in all geographies, as well as with members of the Executive Committee
• Communicates with all auditees up to the Executive Committee
• Independently plan and manage his/her audit schedule in order to meet audit closure timing commitments. Plan audits related to a variety of business activities, processes, and operations, perform a broad and comprehensive analysis to identify business risks, determine audit objectives and resource requirements, and develop audit programs to evaluate internal controls related to financial risks, operational activities, and compliance requirements.
• Flexible to take on any audit assignment assigned by the Head of Internal Audit
• Involved in key strategic and annual activity planning sessions for the Internal Audit Team which influence the direction the team takes for a period of time
• Participate in the development of the annual risk-based plan. Understand business segments and associated risk. Recommend adjustments to audit plan as needed.
• Maintains continued education requirements
• Facilitate the use of automated audit techniques
• Manages deliverables of Internal Audit Staff that reports to the individual
