Senior IT Auditor - Cyber Security at Auditor-General of South Africa

Product:

Conduct audits in terms of the three audit phases:

• Planning
• Execution
• Audit conclusion

Plan the audit in terms of:

• Participate in defining the objectives of the audit
• Participate in defining the scope of the audit
• Assessing the risks from source documentation
• Compiling the audit plan
• Conducting a walk through process with the relevant role players
• Conduct the field work in accordance with policies and procedures

Execute tests to determine:

• Compliance to policies, procedures, standards and specifications
• Adequacy on goals
• Reliability of information
• Efficiency and effectiveness of operations
• Safeguarding of assets
• Generate the audit findings 
• Submit the  findings to Line Manager for input and review and effect the necessary amendments as indicated
• Communicate to  Line Manager and Senior Manager on progress or obstacles during the audit

Participate in a meeting, where appropriate, to discuss:

• Accepted recommendations to be implemented and timelines applicable
• Rejected recommendations and internal actions to be implemented
• Target dates for implementation and review
• Conduct the audit in accordance with internal processes, policies and procedures
• Conduct the audit within the allocated time frame
• Promote and manage sound internal controls within the Business Unit

HR Admin

Continually improve own competence through personal development as per Personal Development Plan (PDP):

• Participate in learning and development programmes
• Participate on programmes for purposes of Continuous Professional Development (CPD)
• Keep up to date with the latest developments at the AGSA
• Participate in transformational initiatives encompassing change, organisational culture, CSI, diversity etc

Financial Management

• Support the Manager in the delivery of high quality, accurate and cost effective audits
• Manage projects efficiently and effectively in terms of time, cost and quality

Provide input into the planning of audits under her/his control:

• Budget requirements
• Organisational reporting
• Adhere to budget allocations for the bookings of hours and expenses
• Obtain approval from Line Manager for any expenses not budgeted for
• Achieve own recoverability target

Ad-hoc duties

• Perform and/or manage other projects, tasks and assignments not stipulated on the Job description as and when required

Formal Education

• B Degree in Auditing, Computer Science or Informatics

Or

• National Diploma in Auditing or IT

Knowledge

• In-depth knowledge of Auditing
• In-depth knowledge and skills in Informatics

Experience

• Minimum 3 years Information Systems auditing experience
• Cybersecurity / penetration testing skills will be advantageous