Jobs Available at South African Bureau of Standards (SABS)

Minimum Requirements

• B. Degree in Auditing, Information Technology or a related field (NQF Level 7)
• Certified Information System Auditor would be advantageous
• 5 years relevant work experience in information technology audits or a related field
• Must have exposure in design, management and implementation of information technology audit strategies, frameworks and initiatives.

Duties and Responsibilities

Operational Planning and Implementation

• Design, manage and implement information technology audit strategies, frameworks and initiatives inclusive of measurement, management and improvement processes and procedures within the organisation.
• Examine internal IT controls, evaluate the design and operational effectiveness, determine exposure to risk, and develop remediation strategies.
• Participate in the change management process.
• Test and identify network and system vulnerabilities and create counteractive strategies to protect the network.
• Conduct efficient and effective IT audit procedures.
• Communicate complex technical issues in simplified terms to the relevant staff.
• Perform regular audit testing and provide recommendations.
• Review, evaluate, and test application controls.
• Provide recommendations and guidance on identified security and control risks.

Risk Based Information Technology Auditing

• Develop and evaluate IT audit processes and report on results.
• Apply established IT audit standards throughout the SABS infrastructure.
• Audit and assess all aspects of the company’s network applications, including software, programs, security, and communications.
• Assess the security measures in place to protect against data breaches, cyber-attacks, and other security threats.
• Monitor the integrity of all processes and formulating a cohesive audit strategy for now and into the future.
• Set a risk profile for projects and how they can impact on the business.
• Monitor IT audit processes on various user interfaces and applications, including client-based applications, intranets, extranets and all connected servers and network.
• Analyse, compile and provide reports as required by stakeholders.
• Make recommendations to business to promote and maintain a culture of risk and fraud awareness and accountability by initiating campaigns and training.
• Analyse and develop processes and provide relevant business solutions to improve organisational performance and service delivery.
• Manage external service providers to ensure timely delivery of services procured in an efficient and effective manner.

Risk and Compliance Management

• Identify and adhere to fraud controls, risk prevention principles, sound governance and compliance processes, and tools to identify and manage risks
• Support and provide evidence to all internal and external audit and regulatory requirements.
• Maintain quality risk management standards in line with regulatory requirements.
• Maintain and enforce all related Service Level Agreements to minimise business risk and ensure business continuity.
• Adhere to all relevant laws, policies and Standard Operating Procedures throughout the organisation.

Stakeholder Management

• Build and maintain effective internal and external stakeholder relationships for the purpose of expectations management, knowledge sharing and integration, and to manage the organisation’s reputation.
• Represent and participate in the organisation’s committees and tasks teams when required.
• Ensure the provision of excellent customer service.
• Resolve queries and problems within span of control and within agreed time frames.
• Follow up on unresolved queries and complaints where required.
• Liaise with relevant stakeholders regarding follow-up of information, as required for tender requests.
• Provide subject-matter advocacy and expertise to all relevant stakeholders.
• Manage internal and external relationships to ensure that best practices are implemented across the organisation.

go to method of application »

Minimum Requirements

• Diploma + Advanced Diploma / B-Degree in Auditing (NQF Level7)
• Chartered Accountant (SA) or C.I.A. (preferred) 
• 10 years relevant work experience in Internal / External Auditing
• 3 years management experience
• Proven track record in managing an internal audit function within a corporate environment
• Proven track record in implementing and leading a variety of internal audit types (i.e., financial and financial control audits, operational audits, integrated audits, compliance audits, follow-up audits, etc.)
• Experience in performance audits and information system audits is advantageous

Duties and Responsibilities

Operational planning and Management

• Contribute towards the development of a strategy for the Division and ensure alignment of this strategy with the plan for the Internal Audit business unit.
• Ensure the establishment, maintenance and improvement of standard operating procedures, policies, and guidelines relating to Internal Audit in consultation with the Head: Internal Audit.
• Manage that productivity is measured effectively against set objectives.
• Manage and ensure the drive of continuous improvement activities.
• Manage the business unit and ensure that it contributes to the achievement of business objectives.
• Manage operations effectively to deliver services within timelines and prescribed quality through effective resource management.
• Use insights gained through business information to compile reports, and metrics to measure success and inform the business decisions within area of responsibility
• Put measures into place to improve productivity

Functional Management

• Manage the end-to-end audit process including resourcing capacity, audit environment staff briefings, audit progress review, audit work review, audit control design, audit report finding preparation, and stakeholder updates.
• Review and assess the appropriateness of the audit plan and provide recommendations or remedial action as required.
• Identify appropriate audit methodologies that are available including the use of technology
• Review the results of the preliminary surveys to understand the area to be audited and provide approval for the audit program and approach.
• Formulate the audit program based on the outcomes of the preliminary survey using appropriate audit methodologies and technologies.
• Plan the audit scope, coverage and work schedules as required by the audit program.
• Review all field work findings reports, and complete and submit monthly and quarterly plans and audit finding reports within the sphere of control.
• Monitor the implementation and adherence to audit recommendations.
• Assess and define challenges and risks (quantitative and qualitative).
• Manage external service providers to ensure timely delivery of services procured in an efficient and effective manner
• Update and review audit manuals to guide the internal audit division’s operations.     

Risk and Compliance Management

• Ensure the mitigation of risks through the identification and application of fraud controls and risk prevention principles and implementation of sound governance and compliance processes and tools to identify and manage risks.
• Manage the coordination and maintenance of quality risk management in line with regulatory requirements.
• Manage and provide evidence on all internal and external audit, Accreditation and regulatory requirements.
• Drive the implementation of compliance with policies aimed at strengthening the SABS brand and stakeholder interface.
• Oversee the maintenance and enforcement of related Service Level Agreements to minimise business risk and ensure business continuity.
• Monitor changes in legislation and the regulatory environment and ensure that appropriate operational controls are implemented to address new requirements

Financial Management   

• Provide input in the planning and compilation of the Internal Audit annual budget aligned to the strategic delivery plans to support the implementation of set objectives.
• Ensure the effective implementation, management, monitoring of the budget, and mitigate and report on any variances.
• Ensure the deployment of proper financial controls to manage the budget.

People Management

• Proactively manage all direct reports in order to ensure that the strategic objectives for the division are met.
• Maintain excellent human capital performance through employee empowerment, skills development and retention and succession planning within the team.
• Maintain an environment where employees respect and adhere to company standards of integrity and ethics by integrating these values into all processes, procedures and practices.
• Manage and lead Internal Audit by providing clarity of vision; prioritising resources; facilitating alignment of the team; managing non-performance, driving a customer-centric performance culture, setting appropriate KPA’s and ensure the cascading thereof throughout Internal Audit and driving their achievement; inspiring commitment; encouraging mutual support; and enabling development opportunities
• Implement a learning culture within the scope of control.
• Drive performance management in line with the SABS policy within the team, and address performance challenges and develop subordinates to meet the expected performance standards.

Stakeholder Management 

• Identify and mitigate internal systems and procedural barriers to enhance excellent customer service.
• Build and maintain effective internal and external stakeholder relationships for the purpose of expectations management, knowledge sharing and integration, and to manage the organisation’s reputation.
• Represent and participate in the organisation’s committees and tasks teams when required.
• Convene and attend meetings and present performance and business related information to relevant stakeholders when required.
• Manage and resolve operational complaints through timeous resolution and/or escalation as required
• Provide technical support and advocacy on Internal Audit related matters to the organisation.
• Provide support for disputes and appeals when required