Senior IT Auditor. (SWAP Partners and Clients) Role Profile

Transcription

1 (SWAP Partners and Clients) Role Profile October 2018

2 JOB DESCRIPTION JOB TITLE: PLACE OF WORK: GRADE / SPINE POINT: HOURS OF WORK: ALLOWANCES: REPORTS TO: SUPERVISORY RESPONSIBILITIES: FINANCIAL RESPONSIBILITIES: As specified in contract of employment Grade 6-7 (Up to 38,052 per annum) Full Time (37 hours per week) Casual Car User Assistant Director As stated below None Main Purpose of the Job To undertake or lead risk-based IT audits and other work as directed by the Assistant Director and in accordance with the Code of Ethics and International Standards for the Professional Practice of Internal Auditing of the Institute of Internal Auditors. Summary of Responsibilities and Duties of the Job 1. To carry out technology audit reviews without supervision and to a standard as set by the Company, as guided by the Assistant Director and the Director of Planning. 2. To be responsible for the direct supervision of auditors in the completion of audit reviews. This includes monitoring performance and quality and providing advice and guidance, as required. 3. To assist the Assistant Director and the Director of Planning in devising the company-wide IT Audit Plan. 4. To act as a key contact on matters relating to the IT Risks and Plan for a client/s within SWAP. 5. To initiate the IT audit process, including meeting with the client manager to discuss the objectives and scope of the audit review. 6. To ensure the design and completion of all aspects of the audit process, including the design of appropriate tests, in respect of every audit to a standard determined by the Company. 7. To ensure a draft audit report is produced in respect of every audit undertaken and within a time scale agreed with the client manager. To ensure that recommendations in audit reports are agreed with client managers including implementation dates of same. 8. To liaise with all levels of management, as required, with regard to the audit process including agreeing recommendations in reports with client managers and agreeing implementation dates of same. 9. To provide assistance and advice to managers, as required, on the management of their IT risks.

3 10. To carry out follow-up reviews, as directed by the Assistant Director and the Director of Planning, to ensure compliance with previously agreed recommendations. 11. To assist other members of staff of the Company as and when required. 12. To carry out any other reasonable duties as required by the Company. External and Internal Contacts Councillors, senior members of staff and external agencies. Face to face, telephone, written and electronic communication. Working Environment Office based. Travel between all principal offices at regular intervals will be essential. Health and Safety at Work Every SWAP employee is required to be familiar with, and abide by, the health and safety policy applicable at any site they may be working at. Data Protection Act 2018 All employees who are involved in the processing or handling of computer data have an obligation to comply with the terms of the Data Protection Act 2018 and each Partner s Data Protection Policy.

4 Job Title: (SWAP Partners) PERSON SPECIFICATION JOB REQUIREMENTS Knowledge 1. Thorough understanding of modern internal audit techniques particularly as applied to Information Technology. EVIDENCE Knowledge 2. Thorough understanding of risk management and corporate governance frameworks in particularly technological. 3. Thorough understanding of governance, risk and control (GRC) in the IT environment. Skills and Abilities 1. Ability to complete internal audit work to a high professional standard and in accordance with the International Standards for the Professional Practice of Internal Auditing of the Institute of Internal Auditors. 2. Ability to influence a diverse senior stakeholder community to develop effective governance, risk management and internal control arrangements 3. Good communication skills in order to engage and convince management of the need to improve their control frameworks. 4. IT skills, particularly in the use of Office 365 and in the use of data analytics. 5. Leadership skills, including assessment of staff performance. 6. Ability to provide peer review to audit colleagues. 7. Ability to lead, supervise and mentor other auditors. Skills and Abilities 4. Application form, interview. 5. Application form, interview. 6. Application form, interview. 7. Application form, interview Experience 1. A track record of proven experience in a range of different IT audit or security reviews. 2. In applying technical proficiency and understanding of IT audit and/or information security in a large organisation. Experience 3. Demonstrable ability of applying modern internal audit techniques in completing IT audits.

5 4. Of leading and supervising others through the audit process. 5. Of working effectively both alone and as part of a team. 6. Demonstrable experience of delivering quality audit reports or similar reports to management and within agreed targets. 4. Application form, interview. 5. Application form. 6. Application form, Interview. Educational 1. Desirable: Qualified IT Internal Auditor or IT Security Professional (CISA or Equivalent). Accepted: Qualified Internal Auditor (CMIIA, CIA or CCAB) or IT specific qualification. 2. Evidence of continuous professional development and commitment to learning. Educational 1. Application form and sight of relevant certificates. 2. Application form. Work-related Personal Qualities 1. Ambitious and keen to progress career. 2. Energetic and enthusiastic. 3. Gregarious, effective communicator. Work-related Personal Qualities 1. Interview. 2. Interview. 3. Interview. Date Reviewed: October 2018