Audit Manager: Information Technology & Cyber at Santam Insurance

What will make you successful in this role?

Planning and delivery:

• To conduct and assist in managing risk-based Information Technology and Cyber related assurance assignments to deliver on the internal audit plan approved by Santam’s Group Audit Committee.
• Assignment management, co-ordination, and optimisation of budgeted resources to meet the Information, Technology & Cyber assurance team and GIA objectives and deliver agreed results and productivity requirements.
• Prepare audit reports and consults with management on practical recommendations.
• Provide input into annual audit planning.

Staff management:

• Day-to-day management and team leadership (should have supervised staff or team/s previously).
• Perform thorough review of work papers to ensure that procedures have been completed, conclusions have been supported, and firm quality control procedures have been adhered to throughout assignment planning, executing, reporting and follow-ups.
• Responsible for Information, Technology & Cyber assurance budget and effective use of audit resources.
• Provide input into team performance contracting and reviews.
• Assist in staff development and career planning.

Internal audit development:

• Assist in developing and implementing audit approaches and methodologies; and defining ideal audit approaches that leverage technology and result in achieving the objectives of an integrated, holistic approach. 
• Assist in building capabilities and methodologies in the areas of Information, Technology & Cyber assurance.
• Identify and recommend opportunities to continuously improve GIA functions and systems in line with organisational and industry changes as well as leading practice developments. 

Client relationship management:

• Utilise networks and develop internal and external client relationships.
• Assist in reporting to various audit and risk committees.
• Regular communication/consultation with the Senior Audit Manager.

Qualification and Experience

• At least 8 to 10 years’ experience (including 2 years at a supervisory/management level) in managing audit staff and performing Information, Technology & Cyber assurance and consulting reviews in a large and complex environment. Among others, this can include reviews of general computer controls, application controls, business processes, software development processes (agile & other), IT & Information Security, Information management and cyber security. 
• Prior experience managing several assignments, some with competing deadlines.
• Experience interacting with clients at all levels including senior/executive management.
• BSc / BCom / Btech / Beng / Honours (with Computer Science / Information Systems as a major) or similar and/or post graduate qualification.
• CISA and/or CIA / CRISC / CGEIT / CDPSE.  
• Experience in applying industry-based methodologies & frameworks such as COBIT, COSO, ISO, ITIL, etc. 
• Experience with integrated audits (application controls and data analytics) and providing Information, Technology & Cyber audit support to non-IT auditors.
• Internal audit experience and experience in the insurance industry preferred.
• Must be able to travel locally and willing to travel internationally if required, and work overtime when necessary.

Skills

• An advanced understanding of IT assurance, governance, risk, and control. 
• Conceptual and innovative thinker and must be able to apply those abilities in the work environment.
• High ethical standards and must be trustworthy.
• Strong verbal and written communication skills.
• Accountability.
• Strong team player.
• Assertive.
• Self-starter.
• Advanced time management skills (must be able to multi-task).