Assistant Manager IT Audit: GCR, ACR and Security Jobs

Requirement Overview

• Carry out audit initiatives to ensure secure, effective, and efficient IT architectures and services in the government sector.
• Act as a subject matter expert in evaluating the design and effectiveness of information systems controls and processes. Develop and implement the IT audit plan to review technical system controls, identify weaknesses, communicate risks, advise on technology-related controls and compliance, and provide practical recommendations.

Roles and Responsibilities

Product

Take part in audit committee or steering committee meetings with business unit management when needed.

Conduct audits through three phases: planning, execution, and reporting.

• Plan the audit:
• Define audit objectives.
• Define audit scope.
• Identify benchmarks.
• Assess risks from source documents.
• Compile the audit plan.
• Conduct walkthroughs with relevant stakeholders.
• Execute tests, including:
• Compliance with policies, procedures, standards, and specifications.
• Adequacy of goals.
• Reliability of information.
• Efficiency and effectiveness of operations.
• Safeguarding of assets.
• Generate audit reports showing:
• Audit findings.
• Recommendations.

Hold meetings, when appropriate, to discuss:

• Accepted recommendations, implementation timelines.
• Rejected recommendations and internal actions.
• Target dates for implementation and review.

• Supervise subordinates during the three audit phases.
• Lead team meetings on audit direction and progress.
• Guide auditors on audit matters.
• Perform fieldwork according to policies and procedures.
• Update manager and senior manager on progress or issues.
• Submit audit reports for publishing and archiving.
• Finalize and archive audit files per policies.
• Support review of contract work and quality assurance.
• Contribute to Information Systems Audit strategic plans.
• Provide guidance on AGSA audit approach.
• Promote sound internal controls in the business unit.
• Stay updated on AGSA developments.
• Manage audits within time frames.
• Follow internal processes, policies, and procedures.

Stakeholder Relationships

• Maintain internal relationships:
• Join debriefing sessions on previous audits.
• Engage with team during audits.
• Liaise with business unit colleagues.
• Maintain external relationships:
• Liaise with audit firms.
• Liaise with auditees on audit needs.
• Participate in interviews and recruitment.

People Management

• Monitor staff performance to build a culture of performance management.
• Help compile Individual Performance Contracts (IPCs) and Personal Development Plans (PDPs).
• Conduct coaching sessions.
• Provide ongoing feedback.
• Mentor subordinates.
• Perform reviews per policies and take corrective actions.
• Create a positive work environment.
• Support transformation initiatives like change, culture, CSI, and diversity.
• Improve personal skills through PDP and commitments.
• Join learning and development programs.
• Participate in Continuous Professional Development (CPD).
• Manage HR per policies, procedures, and laws.
• Complete HR actions on time.
• Support manager in delivering high-quality audits through planning and resource management.
• Manage projects effectively in time, cost, and quality.

Provide input to manager on:

• Audit planning.
• Budgeting.
• Reporting needs.

• Ensure hours and expenses match the budget.
• Meet recoverability targets.
• Manage budget per policies and laws.
• Complete budget actions on time.

Ad-hoc Duties

• Handle other projects, tasks, or assignments as required.

Skills, Experience, and Education

Formal Education

• B Degree in Auditing, Computer Science, or Informatics.

Added Advantages

• Certified Information Systems Auditor (CISA).
• ERP Certificate (Oracle, SAP, PeopleSoft, or JD Edwards).
• State Security Agency or Defence Intelligence Top Secret Clearance.

Knowledge

• Understanding of finance principles, PFMA, and MFMA; apply them and meet deadlines.
• Knowledge of auditing.
• In-depth skills in ERP environments.
• Knowledge of Oracle SysAdmin and business process reviews.
• Knowledge of GCR, ACR, and project reviews.

Experience

• At least 4 years in IS auditing.
• At least 1 year in supervision.
• Experience in ERP environments like Oracle, JD Edwards, or PeopleSoft.
• Experience in cyber security is beneficial.
• Experience in CAATs/Data Analytics is beneficial.

Closing Date: 19 January 2026