Specialist - IT Technical (Digital and Cyber Security) at Hollard Insurance

Job Advert Summary    

• To execute on the internal audit methodology and apply a risk based audit approach when performing start to end internal audit duties across all Hollard functions and partners both nationally and internationally with a high focus on technical IT audit and cyber security.

Required Knowledge and Experience    
Knowledge

• Risk based auditing methodology
• IIA standards
• Computer infrastructure, networks and security
• Basic business and financial understanding
• Basic insurance knowledge (an advantage)
• Sound understanding of IT, data and privacy related legislation and regulation

Skills

• Stakeholder engagement (client interviewing)
• Effective written and verbal communication skills (business acumen)
• Risk management (basic)
• Drafting findings
• Issue identification
• Audit Planning
• Documentation skills
• Time management
• Root cause analysis
• Programming and ability to interpret source code

Experience

• 2-4 years related audit experience and a minimum of 2 years in IT security

Key Objectives 
BUSINESS DEVELOPMENT

• Build rapport with process owners and stakeholders.
• Practice effective communication skills.

FINANCIAL

• Manage time in line with the allocated budget and communicate any potential delays or overruns.
• Assist with the achievement of digitisation goals.

PROCESS

• Conduct audits in accordance with approved Internal Audit methodology.
• Manage client interaction for allocated areas of scope.
• Attend audit team kick-off and close-out meetings.
• Prepare process analysis documentation (low complexity processes).
• Compile business understanding documents and flow charts.
• Conduct penetration tests and vulnerability assessments on computerised networks and systems.
• Develop and utilise a sound understanding of business processes, risks and controls including relevant regulatory and accounting issues.
• Identification of process, information and control gaps and seek additional information if necessary.
• Ensure that audit work and associated information generated is accurate, valid and comprehensive prior to review and/or reporting.
• Documenting findings and discussion with client in terms of factual correctness – asks for support where necessary.
• Draft and discuss own findings for inclusion in audit reports.
• Take responsibility to clear and finalise all own reported findings/reporting points.
• Review own working papers for quality and completeness before sending to Audit Manager for review.
• Ensure all review queries are cleared within a reasonable timeframe (expectation 48 hours).
• Focus on problem solving/high risk areas during the audit.
• Communicate any delays or difficulties experienced for corrective action.
• Track audit process status for allocated areas of responsibility and effectively communicate any anticipated challenges, delays, etc.
• Communicates knowledge gained throughout the audit engagement and/or otherwise with the team members.
• Assist in developing continuous control monitoring, auditing and automation.
• Contribute to knowledge sharing and upskilling programmes.

HUMAN RESOURCES

• Attend scheduled training.
• Live the Hollard Way.
• Take responsibility for own career and performance management.
• Contribute to training ideas and/or potential training deficiencies.
• Contribute to the social committee and attend team/social activities.

Educational Requirements    

• Bcom IT /BSc IT degree as a minimum, as well as one or more of the following:
• Certified Information Systems Auditor (CISA).
• Certified Information Security Manager (CISM).
• Certified Ethical Hacker (CEH).
• Offensive Security Certified Professional (OSCP).