IT Internal Audit / IT Audit Senior Consultant at Deloitte

Johannesburg, Gauteng, South Africa -

Full Time

Start Date

Immediate

Expiry Date

07 May, 26

Salary

0.0

Posted On

06 Feb, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

IT Internal Audit, Controls Assurance, Risk Identification, Client Relationship Building, ERP Systems, SQL, Cloud Risk, Agile, DevOps, Emerging Technologies, Data Risk, Cyber Risk, Project Assurance, IT Governance, Third Party Assurance, Technical Skills

Industry

Business Consulting and Services

Description

Company Description At Deloitte, our Purpose is to make an impact that matters for our clients, our people, and society. This is the lens for which our global strategy is set. It unites Deloitte professionals across geographies, businesses, and skills. It makes us better at what we do and how we do it. It enables us to deliver on our promises to stakeholders, while creating the lasting impact we seek. Harnessing the talent of 450,000+ people located across more than 150 countries and territories, our size and scale puts us in a unique position to help change the world for the better—by bringing together the services we provide, the societal investments we make, and the collaborations we advance through our ecosystems. Deloitte offers career opportunities across Audit & Assurance (A&A), Tax & Legal (T&L) and our Consulting services business, which is made up of Strategy, Risk & Transactions Advisory (SR&T) and Technology & Transformation (T&T). Are you ready to apply your knowledge and background to exciting new challenges? From learning to leadership, this is your chance to take your career to the next level. What impact will you make? Every day, your work will make an impact that matters, while you thrive in a dynamic culture of inclusion, collaboration and high performance. As the undisputed leader in professional services, Deloitte is where you’ll find unrivalled opportunities to succeed and realise your full potential. Job Description This role will primarily focus on the sales and supervision and management of IT Internal Audit and related IT controls assurance engagements. Specialised Technical Capabilities: The applying candidate should demonstrate experience in selling and managing the delivery of IT internal audit and related controls assurance engagements as follows: Ability to scope, plan, execute & manage, report & conclude on IT Internal Audit engagements. Ability to drive sales and business development in the form of new engagement requests including new targeting opportunities, RFP bid requests, client relationship building and opportunity identification and targeting etc. Work closely with the Internal Audit teams to sell and manage IT Internal audit scope and plans Ability to deliver on Assurance engagements by identifying risks, performing testing, researching governing policies / regulations, and developing reports Uses industry leading frameworks and tools to analyze client’s documentation and identify risks that require control assurance Tests validity of client’s historical financial and non-financial information, leveraging relevant standards (e.g. ISAE 3000), as appropriate Articulates client’s regulatory framework by leveraging Deloitte’s proprietary approaches and applicable audit standards and guidelines Develops assurance reports to accurately present risks, related controls, and the effectiveness of those controls Ensures findings and recommendations are aligned with the audit objectives by keeping in mind the engagement business context when performing technical work during the assessment process to ensure all risk facets are considered Demonstrated technical skills and methodology application Able to develop customised audit programs for ad hoc systems Demonstrated knowledge of ERP systems including SAP, Oracle etc. Demonstrated knowledge and experience of key databases (SQL, Oracle) and understanding of the associated security issues and vulnerabilities Ability to perform focused IT reviews including data conversion, interface reviews, segregation of duties and SAP authorisations. Ability to execute on Third party assurance engagements (ISAE3402/SOC) and unstructured controls advisory projects Fluent on Digital Risk and highly knowledgeable on Emerging Technologies Ability to execute on unstructured controls advisory engagements including Cloud, Payments, IT risk & governance, RPA etc. Developed skills in Agile and DevOps Strong industry experience in key industries. Ability to supervise others and impart knowledge. Ability to develop, manage, coach and lead the IT Internal Audit team The candidate should also demonstrate the willingness to develop themselves in the following areas: Ability to form a core technology and data risk skillset through proactively conducting research, and participating to internal and external initiatives Understands and applies the major program management approaches and practices (e.g., SDLC, ITIL) Develops a strong knowledge of technology and data management frameworks (e.g., Technology Risk, Data Risk, Cyber Risk Maturity Model) by conducting independent research, and attending workshops, seminars and training programs Becomes familiar with technology and data risk, as well as industry-specific regulations; keeps up to date with emerging trends. Ability to perform specialised IT internal audit services, such as: IT governance, cloud risk, project assurance, emerging technology assurance and ESG. Qualifications Bachelor of Commerce Information Systems and / or Internal Auditing, Bachelor of Science Computer Science. Relevant Degree, Honours or post graduate diploma preferably. Professional certifications such as CISA and CRISC + relevant CPD that establishes credibility and capability in the IT Risk / Audit market. 4-7 years in a client facing role. 4-7 years IT Audit, Third Party Assurance and IT Controls Advisory experience selected industries of experience (e.g. financial services, TMT or consumer business, etc.) Solid grasp of technical skills and methodology Demonstrated knowledge and technical skills on “core operating systems” e.g. Windows, UNIX, etc. Experience in performing project audits, systems post-implementation reviews (incl. data migration reviews) Demonstrated knowledge and experience in performance of business process and automated controls testing on the more common applications Developing knowledge of ERP systems like SAP A good understanding of how to link risks and controls to ensure test steps and controls and risks all speak to each other; ability to research “unknown” systems or audit in-house developed systems, i.e. problem-solving/logic capabilities Developing Digital fluency and knowledge on Emerging technologies, including Cloud, RPA, AI, etc. Developing skills in Agile and DevOps. Developing further Industry experience (FSI, TMT, CB, ER&I, etc.) Additional Information Note: The list of tasks / duties and responsibilities contained in this document is not necessarily exhaustive. Deloitte may ask the employee to carry out additional duties or responsibilities, which may fall reasonably within the ambit of the role profile, depending on operational requirements. Be careful of Recruitment Scams: Fraudsters or employment scammers often pose as legitimate recruiters, employers, recruitment consultants or job placement firms, advertising false job opportunities through email, text messages and WhatsApp messages. They aim to cheat jobseekers out of money or to steal personal information. To help you look out for potential recruitment scams, here are some Red Flags: Upfront Payment Requests: Deloitte will never ask for any upfront payment for background checks, job training, or supplies. Requests for Personal Information: Be wary if you are asked for sensitive personal information, especially early in the recruitment process and without a clear need for it. Fraudulent links or contractual documents may require the provision of sensitive personal data or copy documents (e.g., government issued numbers or identity documents, passports or passport numbers, bank account statements or numbers, parent’s data) that may be used for identity fraud. Do not provide or send any of these documents or data. Please note we will never ask for photographs at any stage of the recruitment process. Unprofessional Communication: Scammers may communicate in an unprofessional manner. Their messages may be filled with poor grammar and spelling errors. The look and feel may not be consistent with the Deloitte corporate brand. If you're unsure, make direct contact with Deloitte using our official contact details. Be careful not to use any contact details provided in the suspicious job advertisement or email. At Deloitte, we want everyone to feel they can be themselves and to thrive at work—in every country, in everything we do, every day. We aim to create a workplace where everyone is treated fairly and with respect, including reasonable accommodation for persons with disabilities. We are committed to employment equity and building a diverse and inclusive workplace across the African continent. Our recruitment processes are aligned with our Employment Equity Plan and the principles of the Employment Equity Act. Preference may be given to candidates from designated groups. We actively support the inclusion of people with disabilities and embrace neurodiversity in the workplace. We recognise and value the unique strengths that neurodivergent individuals bring, and we are committed to creating an environment where everyone can thrive. If you require reasonable accommodations in relation to your disability and neurodiverse needs during the recruitment process, please let us know. We are happy to make adjustments to suit your individual needs.

Responsibilities

The role focuses on managing IT Internal Audit and related IT controls assurance engagements, including sales and supervision. The candidate will scope, plan, execute, and report on IT Internal Audit engagements while identifying risks and developing assurance reports.