Assurance Specialist - IM at Anglo American

Job Description

• Based within the ABAS function, you will own and deliver assurance assignments that cover governance, design adequacy and operating effectiveness of the internal control environments for De Beers Group.
• This role is based in Johannesburg, but you should expect some local and international travel (approx.40%) to conduct and perform the audits.

You will be responsible for:

• Plan, resource and manage delivery of Anglo American Global IM and Business Unit IM assigned audits projects as well as Group Wide audits in a way that acts as a catalyst for change and improvement. These include access-related reviews, cyber security-related audits, Enterprise Resource Planning implementation projects, IM General Controls and application controls.
• Ensuring all assignments are conducted in accordance with ABAS team standards, methodology and are in line with the annual plan.
• Autonomously deliver and take accountability end-to-end on the assigned audit engagements in line with the approved Internal Audit Plan, and planned budget:
• - Audit planning activities (e.g. audit scoping, risk assessments and audit work programme);
• Audit execution activities using appropriate audit approaches, tools and techniques;
• Audit documentation in appropriate templates and maintenance of audit evidence;
• Reporting of audit issues based on root causes and ability to draw on themes across relevant audits.
• Draft audit reports with sound business and reporting writing skills.
• Confidently present and hold discussions with business stakeholders throughout the audit engagements, including:
• - Obtain understanding of the business processes, controls and self-identified gaps / known risks.
• Hold discussion with business stakeholders about audit work such as obtaining factual accuracy of audit findings.
• Present audit observations and issues with business stakeholders; and discuss remediation actions or solutions.
• Undertake complex or sensitive technical Global IM audit work, including facilitation of risk management workshops for senior client managers. Identify value add and improvement initiatives through audit observations.
• Assist with the development of technical updates to the team including the presentation thereof.
• Control time of audit projects, reporting potential time/cost overruns to the Assurance Manager.
• Actively participate in knowledge sharing initiatives and processes.
• Completion of administrative and other tasks which supports the success of internal audit’s ambition.
• Assist with the preparation and submission of respective papers for Senior Management and executive-level meetings (e.g. Audit Committee, Risk and Assurance Meetings, etc.).
• Participate in the Quality Assurance and Improvement Programme (QAIP) in line with ABAS standards, methodology.
• Invest in continuing professional development and self-improvement to enhance knowledge, skills and other competencies needed to fulfil the role.

Qualifications

• A degree in information technology/computer information systems or related.
• Certified Information Systems Auditor (CISA) qualified.
• Additional qualifications would be advantageous:
• Certified Information Security Manager (CISM).
• Certified Internal Auditor (CIA).
• Technical Knowledge:
• Good understanding of relevant regulations and industry standards (e.g., SOX, COSO, COBIT, ITIL, NIST) and best practices and methodologies to address these requirements. Ability to apply these requirements to organizational internal control frameworks.
• IIA standards and general acceptable auditing techniques.
• Knowledge of ERPs and other relevant audit software tools.
• IT, Data Analytics and/or Digital internal audit experience.
• Digital fluency and knowledge on Emerging technologies, including Cloud, RPA, AI, etc.