Your cv

Related jobs

More retail jobs...
Get jobs on your
mobile phone

IT Audit Manager - Group

Remuneration:Market related 
Location:Cape Town, Southern Suburbs
Job level:Management Jnr-Mid
Job policy:Employment Equity position

Job description

Here's what you can expect to be doing in the role:  (KPA's)

  • Develop a three-year road map of the internal audit strategy as it pertains to information technology risk management, governance and control processes-considering business requirements, company growth, level of assurance, advances in technology, staffing resources, etc
  • Maintain an understanding of the Group's business environment and architecture and stay up to date with current trends pertaining to the business environment / industry, especially with regards to IT and security and recommend the implementation of these improvements to governance, risk management and control processes through consulting engagements
  • Build strong and co-operative working relationship with management, members of the Risk Sub-Committee and the Audit and Risk Committee
  • Provide assurance around IT risks, developing and managing a plan to in-house or outsourced IT resources where needed
  • Ensure that the internal audit plan (approved by the Audit and Risk Committee) is appropriately scheduled across the financial year and that all internal audits scheduled are completed within the timelines set and make sufficient provision for follow-up audits
  • Plan internal audit projects in collaboration with management to ensure that appropriate coverage is achieved in order to add value to the organisation and give assurance on whether IT risks are mitigated to an acceptable low level
  • Execute the audit program to the required standards of the profession and based on industry best practice methodologies to evaluate the effectiveness of controls over information systems & information security, document work performed, and report feasible recommendations to management where deficiencies are found
  • Write SQL scripts to perform data analysis, follow-up on data analysis results and perform quality review on script results to ensure that test objective is achieved
  • Report value added findings that are valid and relevant to the area under review and provide up to date feedback to management regarding any findings identified
  • Collaborate with management to recommend practical solutions to mitigate the risk exposures identified and demonstrate the ability to communicate highly technical issues to both technical and non-technical audiences
  • Assist in tracking the status of management’s action in relation to the internal audit findings reported previously and risk incidents reported
  • Provide timely feedback to the Audit and Risk Committee on the results of the follow-up reviews performed           
  • Enhance the awareness and application of IT governance principles within the business through awareness and educational sessions
  • Annually assess the IT governance processes within the organisation and give an opinion on the adequacy and effectiveness of these processes
  • Facilitate and co-ordinate the risk assessment process undertaken by IT management to ensure that critical risk areas are identified early and that appropriate risk management strategies are considered to mitigate the risks       
  • Ensure that all key controls are identified and are incorporated into the control self-assessment process
  • Ensure that risk registers, risk incidents, actions and business continuity plans are kept up to date on the risk management software     
  • Evaluate the effectiveness of the risk assessment process on an annual basis and provide recommendations as to how the process can be enhanced or streamlined               
  • Provide effective on the job training with regular and timely feedback to junior staff on their performance to ensure the desired level of performance is achieved and maintained
  • Manage data analytic programs to up-skill all team members to become proficient in data analytics
  • Identify ways to improve internal audit activities, thereby providing a better service to the organisation and greater assurance to the Audit and Risk Committee (e.g. better use of technology in the information security space or using automated software to evaluate and monitor the security environment)
  • Deliver a value adding consulting service and collaborate with business on ad-hoc matters that will benefit the business operationally (e.g. assistance with developing reports to monitor risk areas, attending key meetings to consult on areas of expertise, etc.) and which achieve the objectives and expectations of management


A little about who you are:
  • B-degree in Internal Auditing and/or Information Technology
  • CISA or CIA certification
  • CISM/CRISC/CGEIT certification will be an advantage
  • Eight years' working experience in IT auditing of which two years should be at management level
  • Strong technical skills in IT security, ERP configuration controls or system implementations
  • Advanced computer literacy skills with a high proficiency in MS Excel
  • Proficiency in data analytics and writing advanced SQL scripts to evaluate controls and risk exposures in the IT environment 
  • Proven proficiency in the application of leading risk and controls frameworks such as COBIT, ISO27000 and ISACA’s standards, procedures and frameworks
  • Experience in auditing software development using Agile methodologies 
  • Experience in Retail and/or Financial services will be an added advantage 

You will have mastered these traits:
  • Ability to convey the impact of technical matters in an understandable form to a diverse audience (both technical and non-technical)
  • Exceptional communication (verbal and written) and interpersonal skills 
  • Strong planning and organisational abilities
  • Assertive and inquisitive nature with sound judgment
  • Attention to detail with a passion for accuracy
  • Strong analytical and problem solving skills
  • Logical thinker with the ability to drive to the root cause of a problem
  • Works well under pressure
  • Ability to adapt to changing circumstances and environments
  • Ability to collaborate as part of a team
  • Ability to manage self and others
  • Strong project management and time management abilities
  • Desire to continuously develop and improve technical knowledge

Posted on 08 Nov 19:40

Home Choice

The HomeChoice Group is a leading credit-based direct marketing retailer selling homeware merchandise and financial services to the expanding urban middle-income mass market in southern Africa.

View company profile

Recent jobs by Home ChoiceCityDate posted
Showroom Sales AssistantCape Town14 Nov 11:08
Merchandise PlannerCape Town14 Nov 07:31
Practitioner LiaisonCape Town12 Nov 15:30
Senior Product Owner - MerchandiseCape Town12 Nov 13:34
IT Audit Manager - GroupCape Town08 Nov 19:40
Software DeveloperCape Town06 Nov 12:35
Customer Service AgentsCape Town02 Nov 11:05
Customer Service AgentsCape Town02 Nov 11:02
Collections Team LeaderCape Town01 Nov 14:09
IR SpecialistCape Town29 Oct 15:07
More jobs...