Assistant Manager IT Audit: GCR, ACR and Security at Auditor-General of South Africa

Requirement Overview

• Implement audit initiatives to promote the secure, effective and efficient implementation of IT architectures and services within the government sector.
• To be a highly knowledgeable subject matter expert in the evaluation of the design and effectiveness of information systems controls and processes. Further, to develop and implement the IT audit plan to review technical system controls, identify deficiencies, communicate control and compliance risks, advise leadership on status of technology-related controls and compliance concerns within the government sector, and provide meaningful and effective recommendations.

Roles & Responsibilities

Product

Participate in audit committee/steering committee meetings with Business Unit (BU) management as and when required
Conduct audit covering the three audit phases:

• Planning
• Execution
• Reporting
• Plan the audit:
• Define the objectives of the audit
• Define the scope of the audit
• Identify benchmarks to be utilised
• Assess the risks from source documentation
• Compile the audit plan
• Conduct a walk through process with the relevant role players
• Execute tests, inclusive of:
• Compliance to policies, procedures, standards and specifications
• Adequacy on goals
• Reliability of information
• Efficiency and effectiveness of operations
• Safeguarding of assets
• Generate audit reports indicating:
• Audit findings

Recommendations

• Conduct a meeting, where appropriate, to discuss:
• Accepted recommendations to be implemented and timelines applicable
• Rejected recommendations and internal actions to be implemented
• Target dates for implementation and review
• Supervise subordinates in the execution of the three audit phases
• Supervise team meetings regarding the direction and progress on the audits
• Provide guidance to auditors on audit related matters
• Conduct the field work in accordance with policies and procedures
• Communicate to Manager and Senior Manager on progress or obstacles during the audit
• Submit the audit report for publishing and archiving
• Finalise the audit file and submit for archiving in accordance with policies and procedures
• Provide support in the review of contract work and quality assurance
• Provide inputs to Information Systems Audit strategic plans
• Provide guidance on AGSA audit approach
• Promote and manage sound internal controls within the Business Unit
• Keep abreast of the latest development at the AGSA
• Manage audits within the allocated time frame
• Manage audits in adherence to internal processes, policies and procedures

Stakeholder Relationships

• Maintain internal stakeholder relationships:
• Participate in debriefing sessions with regularity audit on the previous year’s audits performed
• Engage with team members during the audit process
• Liaise with colleagues within the Business Unit
• Maintain external stakeholder relationships:
• Liaise  with audit firms
• Liaise with Auditees with regards to Audit requirements
• Participate in interviews/ recruitment process

People Management

• Monitor staff performance to implement a culture of performance management:
• Participate in the compilation of  IPC’s and PDP’s
• Conduct coaching sessions of staff members
• Provide constant feedback to subordinates
• Provide mentorship to subordinates
• Conduct performance reviews in accordance with policies and procedures and take corrective action where necessary
• Create a conducive environment to maintain and enhance employee motivation
• Participate in transformational initiatives inclusive of change, organisational culture, CSI, diversity, etc
• Continually improve own competence through personal development as per PDP and commitment:
• Participate in learning and development programmes
• Participate on programmes for purposes of Continuous Professional Development (CPD)                          
• Manage Human Resources in accordance with policies, procedures and legal requirements
• Complete Human Resource Management actions within the allocated time frames
• Support the Manager to ensure the delivery of high quality, accurate and cost effective audits through effective planning and resource management
• Ensure effective and efficient management of projects in terms of time, cost and quality

Providing input to manager on:

• Planning of audits under her/his control
• Budgeting requirements
• Organisational reporting needs
• Ensure that hours and expenses booked are in accordance with the allocated budget
• Achieve own recoverability target
• Manage budget in accordance with policies, procedures and legal requirements
• Complete budget management actions within the allocated time frames

Ad-hoc duties

• Perform and/or manage other projects, tasks and assignments not stipulated on the Job description as and when required

Skills, Experience & Education

Formal Education

• B Degree in Auditing or Computer Science or Informatics

The following will be an added advantage:

• Certified Information Systems Auditor (CISA)
• ERP Certificate (Oracle, SAP, PeopleSoft, oe JD Edwards)
• State Security agency or Defence Intelligence Top Secret Clearance certificate

Knowledge

• Knowledge and understanding of the principles of finance and the components involved in finance; must be able to apply PFMA and MFMA principles and adhere to due dates
• Knowledge of Auditing
• In-depth knowledge and skills in ERP environments
• Should have knowledge of Oracle SysAdmin and Oracle business process reviews 
• Knowledge of GCR, ACR and project review

Experience

• Minimum 4 years IS auditing experience
• Minimum of 1 year supervisory experience
• Experience on one or more ERP environments, such as Oracle, JD Edwards and PeopleSoft
• Experience in Cyber Security environment would be beneficial
• Experience in CAATs/Data Analytics environment would be beneficial

Closing Date : 19 January 2026