IT Audit Manager

Management Level

Job Description & Summary

Enhancing your leadership style you motivate develop and inspire others to deliver quality. You are responsible for coaching leveraging team members unique strengths and managing performance to deliver on client expectations. With your growing knowledge of how business works you play an important role in identifying opportunities that contribute to the success of our Firm. You are expected to lead with integrity and authenticity articulating our purpose and values in a meaningful way. You embrace technology and innovation to enhance your delivery and encourage others to do the same.

Examples of the skills knowledge and experiences you need to lead and deliver value at this level include but are not limited to:

• Analyse and identify the linkages and interactions between the component parts of an entire system.
• Take ownership of projects ensuring their successful planning budgeting execution and completion.
• Partner with team leadership to ensure collective ownership of quality timelines and deliverables.
• Develop skills outside your comfort zone and encourage others to do the same.
• Effectively mentor others.
• Use the review of work as an opportunity to deepen the expertise of team members.
• Address conflicts or issues engaging in difficult conversations with clients team members and other stakeholders escalating where appropriate.
• Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance) the Firms code of conduct and independence requirements.

JOB PURPOSE

Experienced IT audit manager that will primarily be responsible for the management of and conduct assessments of IT risks and controls in support of internal and external audit and advisory engagements related to IT General Controls and Business Process auditing IT Third party risk management IT Service Auditor reporting (SOC 1 and SOC 2) and Security assessments over Cloud platforms & technologies including the supervision and coaching of junior team members.

Job Profile

PRINCIPAL ACCOUNTABILITIES

The successful candidate will be responsible for:

Working in a client facing role with a global team and international clients as part of a Centre of Excellence focussed on supporting global PwC Teams in their client facing engagements

Conduct assessments of IT risks and controls in support of internal and external audit and advisory engagements related to: IT General Controls and Business Process auditing IT Third party risk management IT Service Auditor reporting (SOC 1 and SOC 2) Security assessments over Cloud platforms & technologies

Supporting assessments for broader information security topics (cyber maturity assessments ISO audits incident management reviews etc.) as well IT general controls.

Monitoring relevant technology risk standards and practices.

Developing risk and control matrices and reviewing procedures.

The review and provision of advice and assistance on business process controls.

Engagement risk management quality assurance through file review engagement planning development and monitoring engagement profitability - Simultaneously deliver multiple client engagements of varying size scope and complexity.

Business development by taking an active role in the business community to increase awareness of the firms services and level of commitment to the local market developing and maturing relationships with internal staff and clients developing proposals identifying and pursuing opportunities to increase the practices penetration in the global market..

Service Delivery by conducting research performing technical testing writing reports conducting interviews and communicating regularly with clients and resources.

Leading field engagement teams as well as coaching and mentoring junior staff members.

Actively participate in all aspects of client engagements including planning scoping testing analysis documentation reporting and remediation typically including IT control reviews IT audits IT risk assessments IT compliance and related work

Evaluate IT controls within different contexts including internal controls over financial reporting (ICFR) engagements (external financial statement audits Sarbanes-Oxley (SOX) controls audits) Systems and Organization Control (SOC) engagements and IT audit engagements

Understand and execute all aspects of Systems and Organization Control (SOC) report readiness and attestation engagements including planning executing and reporting for both SOC 1 and SOC 2 reports

Execute both IT general controls (ITGCs) as well as business process automated controls (application controls or ITACs) controls testing

Evaluate IT controls leveraging different frameworks (COBIT COSO ITIL ISO) and across various aspects of clients IT organizations including application systems and infrastructure (OS DB network) systems

Participate in business development activities and proposal development

Support engagement leadership from a project management perspective (project plans timelines budgets project economics status reporting)

Understand how IT controls audit work impacts the clients broader business. Advise client leadership on the design and operational effectiveness of IT controls

Develop good working relationships and collaborate effectively with colleagues and clients

Advise client leadership on strategic plans and other business matters helping our clients anticipate emerging risks and information technology opportunities

Develop internal controls documentation including internal controls matrices process narratives and data flows

Travel may be required on an ad-hoc basis

MINIMUM QUALIFICATIONS

Bachelors degree in accounting business

information technology computer science or

other relevant discipline

Prior position in IT Audit internal audit or

external auditing firm

Additional Desirable Qualifications:

Certified Information Systems Auditor

(CISA)

CA (SA)

CIA

Professional certification such as CPA

CISA CISSP CISM or CIPP CDPSE or

other similar qualifications

Cloud certifications

Big Four experience

EXPERIENCE

7-10 years of experience in IT audit IT risk and controls IT compliance or related work

Minimum 4 years experience in leading teams and managing IT General Controls review assignments.

Experience in managing complex IT audit engagements (IT general controls automated application controls and data analytics) within financial services for the full project life cycle from planning through to reporting and socialising outcomes with senior management/ C-suite.

Experience in managing and performing third party assurance engagements Understanding of the different contexts in which IT controls work is performed including internal controls over financial reporting (ICFR) Sarbanes-Oxley (SOX) SOC 1 SOC 2 and internal audit

Experience delivering SOC report readiness and attestation engagements including planning execution and reporting

Strong knowledge of IT general controls

Experience supporting leadership from a project management perspective including with project plans metrics and status reporting

Ability to interpret and convey technical information to all audiences

Excellent communication skills with the capability to articulate write and present information in a clear and understandable manner

Excellent analytical and problem-solving skills

Strong time management and organizational skills with ability to effectively manage competing priorities

Experience in auditing Robotic Process Automation (RPA) and AI will be advantageous.

Experience with multiple technology domains including Windows Unix/Linux Oracle SQL and/or database administration software development and networking.

KEY KNOWLEDGE & SKILLS

Technical knowledge

Proficient in the use of Microsoft spreadsheets Word and Powerpoint or Google sheets Docs and Slides

Working knowledge of project management frameworks such as Waterfall and Scrum.

General understanding and working knowledge of information security protocols and principle of relevant regulations and industry standards such as NIST FFIEC SOX SOC COSO COBIT ITIL ISO27001 PCI HIPAA and GLBA plus best practices and methodologies to address these requirements

Understanding of emerging technologies such as cloud RPA and AI

Ability to acquire digital skills and self upskill in areas such as data analytics and data visualisation using firm provided tools.

Understanding of ERP systems and other peripheral business systems. Soft skills

Outstanding interpersonal communication and influencing skills

Ability to communicate effectively with technical and non-technical audiences Excellent leadership and teamwork skills.

Proactive hands-on results-driven orientation required.

Ability to blend exceptional attention to detail with an ability to retain strategic direction within a rapidly evolving entrepreneurial business culture.

Ability to produce high quality work to team managers

Self learning and continuous improvement of skills and knowledge

The ability to be resilient and maintain high motivation levels under pressure; pragmatic; excellent problem-solving and decision-making skills

planning and organising skills

Ability to work independently Other beneficial skills

Finance and accounting practices and methods.

Data analytics and visualisation tools

Scripting experience (Oracle Windows Linux SQL)

ERP controls

Cloud

Travel Requirements

Available for Work Visa Sponsorship

Job Posting End Date