PSG is a leading independent financial services group, with an extensive national footprint and Namibian presence. We have been in operation since 1998, and offer a value-orientated approach to our clients' financial needs, from asset and wealth management to insurance.
PSG has more than 250 offices throughout South Africa, and two offices in Windhoek. Ou...
Read more about this company
We are looking for an objective IT internal auditor to add value and improve our operations by bringing a systematic and disciplined approach to the effectiveness of risk management, control, and governance processes. The successful candidate will possess a good knowledge of risk and control within the Financial Services Sector in particular the Wealth and Investment management industry as well as insurance, stock broking, and financial planning.
Responsibilities:
Perform IT risk assessments and integrated reviews to identify high-risk areas that require focus.
Conduct IT-related audits to assess data integrity, security, software development and IT governance within the business, including:
Pre- and post-implementation reviews of system implementations or enhancements.
IT security audits, including evaluating security vulnerabilities and whether they are properly identified and mitigated.
Reviews of IT management policies and procedures such as change management, business continuity planning/ disaster recovery and information security to ensure that controls are adequately implemented and operating effectively.
Evaluate application and information general computing controls and test compliance with those controls.
Systems development audits to verify that systems that are being developed meet development standards.
Systems and application audits to evaluate whether systems and applications are controlled, reliable, efficient, secure, and effective.
Provide the business with guidance and recommendations on IT risk management, with a particular focus on OS, applications, databases, infrastructure, and security.
Perform data analytics.
Within each audit assignment, being responsible for (cradle to grave) or with a business auditor:
Walkthroughs
Key risk and key control identification
Defining testing strategies
Population analysis
Sample selections
Perform fieldwork and control effectiveness testing.
Consolidate findings and agreed action plans (recommendations).
Creation and finalisation of internal audit reports.
Execute internal audits within predetermined timeframes.
Conduct peer reviews and follow-up activities across the group.
Build strong relationships within the business and other layers of defense.
Possible travelling across the group for audit activities.
Minimum Requirements:
Bachelor's degree in accounting, auditing, information technology, or other relevant discipline
2 - 3 years of hands-on IT auditing experience, or experience in governance or IT security-related roles
Have internal or external auditing experience (within the Financial Services Sector or in a similar role)
Proficiency in OS/applications/databases reviews
Strong technical skills in network/infrastructure controls or system implementations including reviews of routers, switches, firewall security
Project assurance experience
Demonstrates a broad overall understanding of IT governance, corporate IT processes, and information security functions.
Understands IT and data analytics including emerging IT trends
Experience in Cloud Computing
Other IT certifications will be an added advantage
Currently completed CISA certification will be an added advantage
Gmail
Yahoomail