IT and Data Analytics Auditor

• Performs complex level professional IT internal auditing work. Work involves leading information technology audit projects and providing data analytics support as part of internal audits.

• Possess hands on experience of the IT data analytics tools and ERP SAP reporting. Conducts data extraction, validation, analysis and reporting utilizing software tools.

• Responsible for identifying technology risks, and application controls, including IT security and internal controls.

• Determines key IT risks and tests the effectiveness of the related key controls. Documents and issues/deficiencies and ensures that management remediates such deficiencies.

• Plans and conducts IT audits of the following areas –Network and application access/security; - Change Management over operating systems, other infrastructure systems/devices and business applications (in-house/third party); -
Intrusion prevention, detection and response; - General data center operating controls; - Disaster recovery and business continuity; - Systems development life cycle; - Help desk; - Targeted firewall audits; - IT hardware inventory; other audits
as necessary to evaluate the effectiveness and efficiency of other significant IT areas; - other general and transactional level application controls for significant systems as necessary and/or in connection with a financial or operational audit
(coordinated approach between IT and operational auditors).

• Works with external auditors and other assurance providers. Typical activities include documenting IT walkthroughs and annual testing in external format, where requested to facilitate their use and reliance.

• Ensures all audit procedures and activities are carried out and documented in accordance with Corporate Internal Audit Standards, which include professional internal audit standards and applicable Company standards.

• Reviews staff working papers (WP’s), memos and reports and develops appropriate review notes to ensure quality of WP’s, accuracy and appropriateness of judgments and conclusions contained therein and compliance with department
standards in WP’s and to promote staff development.

• Assess information technology control elements to mitigate IT risks regarding the confidentiality, integrity and availability of business information

• Provides or assists in providing training, coaching and guidance to Internal Audit Staff in conducting IT audits and IT other audits related issues.
• Reviews all internal audit scopes for potential IT risk areas. Prepares internal audit reports, audit plans, progress reports, and early reports on potential significant findings.

• Conducts follow-up of prior audit observations to ensure agreed actions are implemented by the Auditee.

• Trains and develops Auditors “on the job” regarding IAD standards, audit process, company business and processes, observation and report writing, in order to ensure continuous development of IAD talent pool.
• Conducts special reviews under supervision of Head or Audit Specialist as requested by CIA in order to address specific concerns of senior management.