Assistant Manager IT Audit directs the audit engagement, conducts review of assigned organizational and functional activities, evaluates the adequacy and effectiveness of the management controls over those activities, plans and executes audits in accordance with accepted standards; reports audit findings and make recommendations for correcting unsatisfactory conditions, and perform special reviews at the request of management.

Job Description

IT Security Audits

• Provide Business and IT management with guidance on IT risk management matters, particularly on application and infrastructure security.
• Responsible for developing and maintaining the IT Risk Assessment at the Group Level under the oversight of the Internal Audit Manager; including identifying areas where business units should consider additional investment and areas internal audit should focus.
• Conduct audits or lead audit teams in performance of IT audits and reviews of systems, applications and IT processes. Prepare and report results to executives and Audit Committees. These include;
• Perform pre and post- implementation reviews of system implementations or enhancements.
• IT security audits (e.g. network, operating system and data center), including evaluating if security vulnerabilities are properly identified and mitigated. Coordinate the scope and performance of these reviews with business units and external security experts.
• Evaluate information general computing controls and provide value added feedback. Test compliance with those controls. Coordinate with Sox teams as applicable.
• Perform various other reviews of IT management policies and procedures such as change management, business continuity planning/ disaster recovery and information security to ensure that controls surrounding these processes are adequate.
• Develop, build & implement tools to analyze data to improve audit efficiency and effectiveness, (including for risk assessments). Ultimately be a source for analytics that business units adopt to provide business insights or for continuous auditing
• Conduct audits or lead audit teams in operational / financial audits.

Operational Audits & Special Assignment

• Prepare kick-off presentation by determining audit objectives, audit scope and audit timelines, etc. as per Group Internal Audit format.
• Determine the auditing procedures to be used, including statistical sampling and the use of electronic data processing tools.
• Guide and instruct auditors assigned to the audit, and review their work for sufficiency of scope and for accuracy, leading the audit team to optimal performance
• Coordinate with process owners during the field work and timely report to Assistant Manager/Audit Manager on any foreseen delays.
• Update the Audit Manager about the audit status including briefing on high-risk areas identified during the audit.
• Direct, counsel, and instruct auditors assigned to the audit, and review their work for sufficiency of scope and for accuracy, leading the audit team to optimal performance.
• Perform quality review the working papers prepared by subordinates.
• Prepare the draft audit report and perform detail review before reporting of deliverable to Assistant Manager/Audit Manager.
• Coordinate with process owners to receive responses on the draft report and review the action plans to finalize the report, prepare executive summary to share with Senior Management, send post audit survey and receive feedback on the report.
• Carry out assignment appraisals for subordinates.
• Ensure the quality assurance review of all audit deliverables in completed after the assignment.
• Provide advisory services for new process changes, business changes, etc.
• Perform detail review of all the evidence and system records as part of investigations assigned by the Senior Audit Manager.
• Prepare detail report with facts and figures for the investigations carried out and monitor the action plan.
• Carry out special assignments requested by Executive Management including analysis, preparation of management dashboards, facts finding report, etc.
• Track implementation of pending action plans against Internal Audit recommendations, prepare follow-up presentations for the management, review the follow-up testing carried out by Subordinates.
• Manages the development and maintenance of auditee and staff relationships through individual contacts and group meetings.
• Provide guidance to Internal Auditor in conducting audits and other audits related issues.

Data Analytics

• Have good knowledge of data analysis tools – Tableau, Power BI, or similar to identify the key risk indicators as an input for the audit assignment.
• Assists the Audit Manager in carrying out analysis assignments by extracting and analyzing system records and exception reports.
• Identify new key risk indicators (KRIs) for exception reporting across various business segments as part of continuous control monitoring process

Education and Experience

• Degree in Finance, Accounting or Computer Science
• Understanding of multiple technology domains including software development, Windows, database management, networking, and UNIX or preferably SAP, AX Dynamix experience. Understanding of information security standards, best practices for securing computer systems, and applicable laws and regulations.
• Minimum 7 -10 years of relevant internal audit experience with an IT background in a retail industry preferably or Prior position in IT Governance/IT Audit – internal audit or external auditing firm.
• Progressive achievement in one or more of the traditional IT disciplines (applications, operations, infrastructure, and management).
• Experience with IT Operations desirable

Skills Requirement:

• Outstanding interpersonal and communications skills; ability to communicate effectively with technical and non-technical audiences.
• Expert knowledge of internal auditing, internal controls, risk management, and finance and accounting practices and methods.
• Comprehensive understanding of internal control environments within the IT function.
• Experience with multiple technology domains including aspects of Microsoft, SAP based ERP systems, Unix and/or database administration, software development and networking.
• Excellent leadership and teamwork skills.
• Ability to produce high quality work products for both the IT groups and Senior Management.

Information Technology Audit Manager GMG Dubai