Specialist Audit - Compliance Monitoring at Absa Group Limited (Absa)

Job Description

• Execute all of the monitoring/audit phases - planning and scoping (identification of risks and controls), fieldwork (execution of design and operating effectiveness assessments) and reporting (ensure audit observations and planned actions are agreed with management for factual accuracy).
• Ensure that delivery adheres to the Compliance Assurance Methodology and quality standards.
• Prepare monitoring/audit observations and make sure that they are concise, factually accurate and cover all of the significant issues. The observations must be insightful, address the root causes, and have agreed actions that fully mitigate the risk.
• Maintain comprehensive documentation of testing procedures, results, and recommendations.
• Prepare and present regular reports to senior management and relevant stakeholders outlining compliance testing findings and recommended actions.
• Provide suggestions to stakeholder management on how they can address the control issues identified.
• Display professional scepticism, raising and discussing contentious observations with management and provide evidence to support all issues identified.
• Provide timely feedback to the Monitoring & Testing Manager and team members with progress on identified issues and observations raised.
• Draft all findings and reports so that they are concise and factually accurate.
• Support the development and implementation of data analytics driven business-monitoring programmes to support the Compliance Monitoring & Testing team.

Stakeholder engagement and Portfolio management

• Develop and maintain relationships with business (including 1and 2 Line of Defence) and actively monitor the compliance risk profile of the business to inform assurance planning, reporting and delivery.
• Support the Combined Assurance effort across the 3 LOD to strengthen the control environment.
• Provide input into Risk and Committee reporting, clear messaging and impact on the risk and control environment of the business.
• Work closely with compliance officers, legal teams, and business units to address compliance issues.
• Implement ongoing monitoring processes to ensure sustained compliance.

Knowledge Management

• Display professional scepticism and apply a residual risk lens to potential audit issues with management and in final reporting.
• Continuous upskilling on both technical and other core competencies.
• Keeping up to date with industry trends, regulatory changes and professional standards.
• Stay informed about changes in regulations and industry best practices, adjusting monitoring processes accordingly.

Teamwork: 

• Engage proactively with Monitoring & Testing colleagues during assignments and request technical assistance where required and based on knowledge of business areas, provide guidance to other team members and peers by sharing best practice so that their work meets and sometimes exceeds quality standards.

Knowledge and skills

• Practical experience of development and execution of IT General and Application Controls, analytics programs to assess risk and related control environments as part of an internal or external audit role/function, or as part of a risk management function
• In-depth working knowledge of GRC systems and integration with Data Lakes (e.g. Auditbond, Archer GRC, Hadoop & AWS Data Lakes)
• In-depth knowledge of relevant financial regulations and industry best practices.
• Strong analytical and problem-solving skills
• Excellent communication and interpersonal skills
• Detail orientated and thorough
• Ability to work independently and as a part of a team
• Strong ethical standards and integrity

Advantageous:

• Practical knowledge of data mining, data analysis and visualization techniques
• Advantageous - Cyber security skill and experience such as security assessments, firewall wall configuration, DevSecOps, etc.
• Experience doing technology or cyber security audit or assurance work

Education

• B Degree (e.g. Commercial, Informatics, Statistics, Computer Science, Audit)
• Programming / software development experience
• Min of 5 years in compliance, risk management or audit within a financial institution

Advantageous

• CISA - Certified Information Systems Auditor; CIA - Certified Internal Auditor;  CFSA - Certified Financial Services Auditor; CCSA - Certification in Control Self-Assessment
• Cyber security industry accreditation/certification (e.g. CND, S+, CEH, ISO 27000)
• Knowledge of data Visualisation/Dashboards tools/RPA