Specialist:Technical Assurance Security & Privacy Assurance Audits at Transnet

Position Purpose:

• Manages and executes the strategic three year and annual internal audit plans, in accordance with the International Professional Practices Framework (IPPF) and provides assurance on the status of internal controls across Transnet Operating Divisions focusing on Technical - Security and Privacy Assurance audits.

Position outputs:

Implements the Internal Audit Strategy

• Aligns the company strategy as it relates to ICT and Advanced Manufacturing, and align it to the Internal Audit Assurance & Advisory Strategy, processes, procedures and roadmap.
• Implements the Technical Assurance strategy and roadmap in line with company policies and procedures.
• Leads and manages resources to ensure implementation of audit and advisory strategy and roadmap.
• Aligns the internal audit processes and procedures to the portfolio’s risk assessments.
• Provides input into business risk assessments, industry and global benchmarks to be used as basis for the Strategic Internal Audit and Advisory Plan.

Executes the Strategic Three year rolling Internal Audit Plan

• Ensures ongoing alignment of Transnet risk exposures as they relate to governance, risk management, operations, and information systems, to the portfolio.
• Supports the development and ensures execution of the Technical Assurance strategic three-year internal audit plan for the Technical Security and Privacy Assurance portfolio, which is risk-based and aligned to Transnet’s risk profile.
• Provides regular input into the strategic three-year Internal Audit plan to ensure that it appropriately responds to emerging risks.
• Ensures compliance with all PFMA and regulatory requirements in the execution of audits.
• Manages and executes Technical Security and Privacy Assurance audits that will embrace effectiveness, efficiency, economy of business processes in order to add value.
• Supervises the teams to ensure timely execution of Internal Audit Plan.
• Provides ongoing assessment of the adequacy and effectiveness of the system of internal control and risk management for relevant portfolio to input into the overall annual written assessment report to the Audit Committee, the Board and other Board committees.
• Provides real-time assurance where necessary to ensure successful implementation.
• Supports the performance of continuous auditing on high-risk areas.
• Executes Internal Audit Plan in accordance with approved internal audit budget, internal audit methodology and quality standards for the Technical – Security and Privacy Assurance portfolio.
• Executes regular follow up reviews to ensure timely implementation of management actions across all ODs.

Advisory Services to strengthen the system of Internal Control

• Attends various Governance Forums within the Operating Divisions to make relevant recommendations with regards to process and performance enhancements and strengthening the system of internal controls.
• Evaluates business risks on a quarterly basis and aligns Technical Security & Privacy advisory projects accordingly.
• Undertakes and executes advisory projects that will have high impact on the business.
• Supports the development of Internal Control Frameworks for the portfolio.
• Supports and provides input into the extensive use of benchmarks in order to derive value add on performance audits.
• Supports the integrated/combined assurance activities.

Utilizes Data Mining and Analysis to identify risks and trends

• Aligns all approved data mining and analytics to the Internal Audits processes and procedures and ensures that they are risk based.
• Aligns, optimizes and embeds CAATS in all internal audits where applicable.
• Provides monthly reports to EM Technology Assurance and internal structures where required (e.g. TLT and TOT) with exception reports and trends on various key data to support reporting of audit outcomes and aligns the audit plan on an on-going basis.

Supports Stakeholder Relations

• Makes input into client needs and expectations for inclusion in the overall TIA stakeholder management plan.
• Supports implementation of the stakeholder management plans across all divisions.
• Ensures compliance to the approved stakeholder management plan for the Technical Assurance portfolio.

Quality Assurance and Improvement Programme

• Supports the implementation of the TIA QAIP initiatives within the portfolio.
• Compiles, reviews and produces internal audit files that adhere to the Quality Assurance standards and the approved internal audit methodology.
• Advises the TIA EM Technical Assurance and other Transnet Senior Officials on various assurance processes within the portfolio.
• Supports the role of TIA in Integrated/Combined Assurance as far as it relates to the portfolio.
• Supports the embedding of Integrated/Combined Assurance framework within own area of responsibility as far as it relates to TIA.

Qualifications & Experience:

• Bachelor’s degree in Computer Science/Engineering or other relevant to the audit profession.
• Postgraduate in Computer Auditing CISM/ Certified Ethical Hacker and freight logistics or operations will be an advantage.
• Minimum 8-10 years’ experience in a Management role of which at least 3 years in the internal audit environment.
• Work experience in a large organisation will be an advantage.
• People management experience will be an advantage.
• Experience in transport/logistics industry will be an advantage.

Standard Job Requirements

• Driver’s license code 08
• Regular travel and visits to project sites and operational environments
• Willing to work extended working hours
• Willing to travel locally and internationally

Competencies:

Behavioural Competencies:

• Strategy & Sustainability
• Inspirational Leadership
• Business Performance and Delivery
• Relationship Management
• Corporate Governance & Compliance
• Personal Master