Job Opportunities at Auditor-General of South Africa

Risk Stategy

• Assist with primary responsibility for the implementation of the strategic initiatives related to risk, ethics, complaints, internal control and compliance functions,
• Manage actions items and matters arising for execution and resolution.
• Assists with secretariat work on REBU strategies, by arranging and preparing strategic meetings, minutes and monitoring matters arsing.
• Assist with project management responsibility for all R &E strategic initiatives
• Assist in tracking and managing strategic initiatives and ensure seamless execution of the initiatives
• Track and follow-up the progress and completion according to the journey maps and defined timelines
• Draft progress update reports on all deliverables at BU, exco, and audit committee levels
• Prepare content on research and benchmarking relevant to selected initiatives on the strategies Engage in knowledge sharing with the team to impart skill on strategic development and execution.
• Prepare content and manage engagements with relevant stakeholders on their contributions to the strategic initiatives
• Assist with development and communication of Risk and Ethics business unit (REBU) policies, procedures and framework
• Assist with development of risk mitigation strategies, processes and project management model for the organization’s critical risks or gaps and monitor the implementations
• Assist with development and implementation of a business continuity strategies in response to the organisational risks on business resilience.

Stakeholder Engagement

• Assist with REBU strategy, processes and Business Continuity Management education and training from time to time
• Ensure that a culture of effective risk, ethics, complaints and compliance management is continuously communicated and reinforced
• Communicate risk, ethics, complaints and compliance management strategies with all stakeholders.
• Prepare material or content to conduct roadshows with all stakeholders (internal and external) to sensitive them on AGSA risk, ethics, complaints and compliance management strategies.

People Management

• Manage human resource in the team which involves: -
• Facilitate the provision of adequate staffing within the team
• Coordinate the development of job descriptions, job evaluation of posts within the team
• Manage performance of the team
• Coordinate the development of employee competencies to be in line with the MQF within the team

Financial Management

• Assist in managing and reporting on the centre budget in accordance with the approved finance policies

Ad Hoc Projecs

• Perform all SM and BUL’s projects as and when required

Formal Education

• Degree in Commerce, ethics, risk management, project management, strategy or appropriate qualification
• Knowledge on IESBA Code of Ethics, ISO 31000, COSO framework, compliance institute of Southern Africa (CISA) framework will be an advantage. 
• Familiarity with the public sector will be beneficial
• Exposure to SOQM and other financial sector compliances will be an advantage.

Experience

• 3-5 years’ experience preferably in strategic projects or project management focusing on governance, risk, ethics, complaints and compliance management or related environment.
• 3-5 years’ experience conducting risk, ethics, complaints and compliance, strategy, project management.

go to method of application »

Manage strategic alignment

• Assist with the development and implementation of an IT effectiveness audit strategy in accordance with policies, procedures and legislation.
• Assist with the alignment of the IT Effectiveness strategy to the strategic objectives of the business unit.
• Manage teams to ensure alignment to the vision, mission, strategic goals and values of the AGSA.
• Provide feedback on the implementation/ achievement of strategic objectives to the relevant stakeholders.

Manage audits

• Manage Network Security audits within the allocated time frame.
• Manage Network Security audits in accordance with policies, procedures and legislation requirements.

Lead, direct and coordinate the portfolio of Network Security audits covering the three audit phases:

• Planning
• Execution
• Reporting
• Liaise with auditees on the provision of advice/ recommendations, setting up meetings, etc.
• Initiate and lead meetings with the audit team regarding the direction and progress of the audits.
• Provide guidance to managers and assistance on audit-related matters.
• Ensure that all risks for the specific audit engagements are addressed. For example:
• Appointment of specialist staff
• Contract in and out
• Conduct audit team visits to:
• Review Work
• Finalise The Audit
• Conclude Working Papers
• Prepare Audit Report
• Attend meetings with the team and auditees.
• Provide motivational talks and training to team members regarding auditing matters.
• Facilitate the transfer of specialised skills for Network Security audits to the IT General Controls teams within the business unit.
• Engage with contracted-out partners.
• Manage all projects to ensure timeous delivery on milestones and the required quality of delivery.
• Perform functions as required by an engagement manager in accordance with the policies of ISA and the AGSA.
• Prepare and take responsibility for presentations.
• Report back to the audit steering committees and audit committees on the planning, execution and reporting of the audits.

Manage Human Resources 

• Analyse the business plan to determine the applicable deliverables and targets
• Participate in securing the human resource requirements to ensure that deliverables will be met in accordance with the expected targets
• Manage staff performance to implement a culture of performance management:
• Compile IPC’s and PDP’s
• Conduct coaching sessions to ensure subordinates perform at the optimum level
• Provide constant feedback to subordinates
• Provide mentorship to subordinates
• Conduct performance reviews in accordance with policies and procedures and take corrective action where necessary
• Manage the development of staff and ensure each staff member has a Personal Development Plan
• Create a conducive environment to maintain and enhance employee motivation
• Participate in transformational initiatives inclusive of change, organisational culture, CSI, diversity, etc 
• Continually improve own competence through personal development as per PDF and commitment:                                  
• Participate in learning and development programmes
• Participate on programmes for purposes of Continuous Professional Development (CPD)                           
• Manage Human Resources in accordance with policies, procedures and legal requirements
• Complete Human Resource Management actions within the allocated time frames 

Financial Management 

• Ensure the delivery of high quality, accurate and cost effective audits through effective planning and resource management.
• Assist with negotiating budgets with regularity audit and ensure that RFAs are signed and submitted on time
• Ensure effective and efficient management of projects in terms of time, cost and quality 
• Review and approve timesheets, S&T and advances in line with the allocated budget
• Monitor staff leave, training, non-recoverable activities and recoverability reports to ensure achievement of annual recoverability targets.
• Provide input on the centre income budget
• Assist with the review invoices of CWC before submission for approval

IT effectiveness

• Assist in maintaining industry, information technology and audit knowledge, skills and abilities relating to cyber security, cloud computing, enterprise mobility operating systems, network environments, applications and database management systems, programming languages, LAN / WAN communication concepts, and system development processes. 
• Monitor trends within the information technology and government sectors to identify emerging areas of risk facing government.

Assist with the coordination of the portfolio of IT effectiveness audits covering:

•  Value-for-money IT audits
• Effective and efficient deployment of IT infrastructure and services
• Compliance with ECT and PoPI (Protection of Personal Information) acts

Qualification

• B Degree in Auditing, Computer Science or Informatics

The following will be an added advantage:

• Certified Information Systems Auditor (CISA) or
• Certified Ethical Hacker (CEH) or equivalent

Experience

• Minimum 5 years IS auditing
• Minimum 2-3 years managerial experience 
• Extensive experience in vulnerability assessments and penetration testing. Candidates with managing / conducting purple team exersises will be preferred.

go to method of application »

Product:

Conduct audits in terms of the three audit phases:

• Planning
• Execution
• Audit conclusion

Plan the audit in terms of:

• Participate in defining the objectives of the audit
• Participate in defining the scope of the audit
• Assessing the risks from source documentation
• Compiling the audit plan
• Conducting a walk through process with the relevant role players
• Conduct the field work in accordance with policies and procedures

Execute tests to determine:

• Compliance to policies, procedures, standards and specifications
• Adequacy on goals
• Reliability of information
• Efficiency and effectiveness of operations
• Safeguarding of assets
• Generate the audit findings 
• Submit the  findings to Line Manager for input and review and effect the necessary amendments as indicated
• Communicate to  Line Manager and Senior Manager on progress or obstacles during the audit

Participate in a meeting, where appropriate, to discuss:

• Accepted recommendations to be implemented and timelines applicable
• Rejected recommendations and internal actions to be implemented
• Target dates for implementation and review
• Conduct the audit in accordance with internal processes, policies and procedures
• Conduct the audit within the allocated time frame
• Promote and manage sound internal controls within the Business Unit

HR Admin

Continually improve own competence through personal development as per Personal Development Plan (PDP):

• Participate in learning and development programmes
• Participate on programmes for purposes of Continuous Professional Development (CPD)
• Keep up to date with the latest developments at the AGSA
• Participate in transformational initiatives encompassing change, organisational culture, CSI, diversity etc

Financial Management

• Support the Manager in the delivery of high quality, accurate and cost effective audits
• Manage projects efficiently and effectively in terms of time, cost and quality

Provide input into the planning of audits under her/his control:

• Budget requirements
• Organisational reporting
• Adhere to budget allocations for the bookings of hours and expenses
• Obtain approval from Line Manager for any expenses not budgeted for
• Achieve own recoverability target

Ad-hoc duties

• Perform and/or manage other projects, tasks and assignments not stipulated on the Job description as and when required

Formal Education

• B Degree in Auditing, Computer Science or Informatics

Or

• National Diploma in Auditing or IT

Knowledge

• In-depth knowledge of Auditing
• In-depth knowledge and skills in Informatics

Experience

• Minimum 3 years Information Systems auditing experience
• Cybersecurity / penetration testing skills will be advantageous