Senior IT Auditor at Sasol

Job description

We are looking for an Senior IT Auditor with 5 - 7 year of IT Auditing experience

In line with Sasol’s commitment to Employment Equity, preference will be given to suitable candidates from designated groups.

Primary Reporting: Head of IT Audit

Value Chain Unit: Assurance Services

Location: Sandton, Gauteng

Purpose of Job/Role Intent

• In accordance with the Sasol Assurance Services (SAS) Charter as approved by the Sasol Limited Audit Committee:
• To direct and execute the IT project and governance audits of the Sasol Group.
• To ensure that the quality of audits executed are in alignment with the Sasol Assurance Services Operating Manual (SASOM).
• Manage the allocation of audit resources on assignments and projects
• Manage the execution of IT Audit audits and act in the role of a subject matter expert for audits managed and executed.
• Manage the execution of audits to be within budgeted planned hours.
• Ensure timely reporting of assigned audit tasks and follow established reporting protocols.
• Integrate with other departments with regard to knowledge sharing on audit tasks being managed and executed.
• Act as liaison with clients.
• Minimum Qualifications and Experience
• B. Compt Honours or BSc Honours with IT/IM and auditing related subjects as majors - Non Negotiable
• 5 to 7 years of IT Auditing experience
• 2 years managerial experience

Additional qualifications that will be an advantage:

• CA(SA) / CISA/ CISSP/ CISM
• Subject matter expertise:
• Internal auditing
• IT/ IM related auditing using Cobit as basis
• IT project life-cycle framework

Core Elements of Job & Key Performance Indicators:

• Audit task planning
• Review/ compiling of the planning memorandum to ensure focus on high risks
• Review/ compiling of the audit programme to ensure audit objectives are met
• Audit execution / reporting
• Review/ prepare audit evidence supporting the reported findings in the audit report
• Manage the execution of the audits and execute own audits to ensure factual and timely reports with flexibility to adapt to change
• Plan/ execute overseas audits when required
• Internal Audit Reporting
• Periodically compile status reports to all relevant stakeholders for area of specialisation and VP: Projects and Combined Assurance and/ or CAO, as appropriate and in accordance with the Reporting Protocol
• Prepare report on quarterly basis for the GEC and the Sasol Limited Audit Committee on significant governance issues identified and progress against annual audit plan for area of specialisation
• Factual, comprehensive and timely reporting to SBU's/OBU's/ROH's management, Governance Committees, Boards and relevant stakeholders
• Quality control
• Review all audit reports prior to submission to Head of IT Audit and ensure that all reporting protocols are observed
• Conduct review of audit working papers
• Assist in conducting quarterly peer reviews of audit working papers
• Complete task assessments of all team members of audit tasks managed and take appropriate corrective actions to ensure corrective measures for quality concerns identified.
• Specialist advice
• On request review policy and procedures
• Attend and provide specialist advice on request at Project Steering committee meetings or client meetings
• Ad hoc requests for specialist advice
• Special Ad hoc Requests
• Conduct specific ad-hoc audit requests as and when required
• Communicate and assess the relevance of requests from business management to line manager and allocate resources as necessary
• Execute special requests by the Audit Committee as and when required
• Leadership and Values: Values behaviour, Personal development and effectiveness. Leadership accountabilities to reach results (where applicable):
• Audit planning and management
• Assist in developing an annual audit plan for area of responsibility – IT projects and governance
• Develop/ Execute a functional work plan and schedule in order to execute and to complete the IT audit plan based on priorities and risks with flexibility.
• Weekly feedback to Head of IT Audit on resource requirements, audit status and budget control of audits allocated and managed by self to enable effective scheduling of annual audit plan.
• Perform allocated audit, management and/or administrative tasks as and when allocated by the Head of IT Audit
• Sasol Assurance Services Management
• Maintain and update standard audit programmes
• Support the developed tactical plans to support the implementation of the Sasol Assurance Services and IT Audit strategy
• Act as a change manager and assist in driving the implementation of innovative improvements and tactical changes to Projects & Combined Assurance processes and systems effectively and efficiently
• Stay abreast of new developments in the assurance and IT project and governance environments and make recommendations on necessary changes
• Lead team and be a role model for Sasol values
• Manage delivery to ensure requirements of the Sasol Limited Audit Committee in terms of our performance measures are met
• Manage team effectiveness
• Communicate requirements and assist in implementing skills improvement and team development through training and exposure
• Proactively engage and share knowledge with other teams in order to drive integration between all departments within Assurance Services

Values and Ethics

Being a role model in living the Sasol shared values and complying to the Code of Ethics and Guide to Code of Ethics.

Relationships, teamwork and Collaboration: Internal and / or external stakeholder management:

• Stakeholder engagement
• Attend, monitor, evaluate and contribute to discussions at relevant committees, forums, projects and steering committees where assurance about the area of specialisation is being discussed
• Identify and communicate any significant risks not yet identified through the risk management process
• Issue and discuss all audit findings with senior management (Internal and external)
• Shares knowledge, networks and collaborates with Assurance Services colleagues on internal audit findings
• Contribute to advice provided on Corporate Governance frameworks
• Discuss and obtain input on annual audit plan
• Build constructive working relationships with manager, peers, clients and other service providers
• Communicate and behave professionally so that actions result in high level of credibility, trust and respect