NATIONAL LOTTERIES COMMISSION (NLC) The National Lotteries Commission (NLC) is a statutory body established in terms of the Lotteries Act (Act 57 of 1997), as amended with the purpose of regulating the South African Lotteries and Administering of the National Lottery Distribution Trust Fund (NLDTF). Suitably qualified prospective candidates are invited to submit their applications to fill the following positions. National Lotteries Commission is committed to the achievement and maintenance of diversity and equity in employment, especially in respect of race, gender, and disability.
INTERNAL AUDIT DIVISION INFORMATION SYSTEMS INTERNAL AUDIT SPECIALIST PURPOSE OF THE JOB The incumbent will primarily be responsible for undertaking information systems audit engagements within an ERP systems environment to ensure the adequacy and effectiveness of information technology, financial and operational controls within the NLC to ensure that it is in accordance with corporate governance, IIA standards, ISACA standards and practices, the PFMA as well as other applicable laws and regulations and to inform the relevant stakeholders on the state of the control environment. SALARY SCALE: • Commensurate with qualifications and experience REQUIRED QUALIFICATIONS • Degree in Accounting, Informatics, Information Systems, Computer Science, Internal Auditing or equivalent • Certified Information Systems Auditor (CISA) • CIA, CEH, CISM or CISSP will be added advantage REQUIRED WORK EXPERIENCE • At least 5 years’ experience in Information Systems/IT Audits • At least 3 years in Network / Cybersecurity audits • At least 2 years in data analytics Experience in IT general Controls and Applications Control, Infrastructure Audit. IT Governance and Project assurance audits (SDLC). KEY DELIVERABLES • To provide a spectrum of IT Audit and data analytics services. • Conduct and lead preliminary survey procedures. Assist in development of audit program. • Conduct and lead audit field work and collect relevant, sufficient, and useful audit evidence. • Develop audit working papers. Develop audit findings with all elements of a finding. Assess and evaluate audit evidence. • Develop conclusions on audit findings. Assist in developing draft internal audit reports. • Discuss the internal audit report with the client. • Assist with the Development of the risk based annual audit plan as well as three year rolling plan for IT audit activities. • Lead the planning and execution of the IT Audit plan • Assist with other internal audit activities and responsibilities as and when required • Provide Executive Management with the opinions on the effectiveness of the NLC controls • Liaise with external auditors on the internal control issues • Quarterly reconciliation of budgeted external assurance providers and audit fees • Quarterly progress reports on audit work performed by co-source audit firm • Guide, direct and review the work performed by audit officers and co source partner • Maintain an updated register/ database of prior audit recommendations and co-ordinate the follow-up to validate (quarterly basis) resolutions of the findings • Monitor the implementation of management actions recommended in audit reports • Make oral presentations of audit findings to management and where required, executive management • Regularly monitor the NLC systems and procedures to ensure compliance • Assist with the preparation of reports to be distributed and presented to Commissioner, EXCO, Board Audit Committee and the NLC Board. • Provide Organisational and IT management with guidance on IT risk management matters, particularly on application and infrastructure security. • Responsible for developing and maintaining the IT Risk Assessment in the Audit division under the oversight of the Manager and Chief Audit Executive; including identifying areas where business units should consider additional projects and areas internal audit should focus. • Conduct audits or lead audit teams in performance of IT audits and reviews of systems, applications and IT processes. • Prepare and report results to the IT Audit Manager, Chief Audit Executives and Audit Committees. These include: o Perform pre- and post- implementation reviews of system implementations or enhancements. o IT security audits (e.g., network, operating system and data centre), including evaluating if security vulnerabilities are properly identified and mitigated. Coordinate the scope and performance of these reviews with business units o Evaluate information general computing controls and provide value added feedback. Test compliance with those controls. o Perform various other reviews of IT management policies and procedures such as change management, business continuity planning/ disaster recovery and information security to ensure that controls surrounding these processes are adequate. • Develop, build & implement tools / scripts to analyse data to improve audit efficiency and effectiveness, ultimately be a source for analytics that business units adopt to provide business insights or for continuous auditing. • Guide, direct and review the work performed by other Audit & Risk personnel and co source partner • Supervise Internal Audit officer COMPETENCIES AND SKILLS • Must possess knowledge of the following: o Internal audit principles o Relevant legislation applicable to NLC o Data analytics o COSO, COBIT, ISO 270001 and NIST Frameworks • Computer literate in MS Office and data analytics tools. • Must possess the following skills: o Manage own work o Quality orientated o Self-assured o Ability to work independently o Strong quantitative and analytical abilities • Strong leadership and people management skills • Decision making and initiating action. • Strategic thinking skills • Sound decision-making ability • Ability to manage multiple priorities simultaneously • Strong, problem solving and analytical skills • Strong written and oral communication skills • Knowledge of risk-based audit methodology and automated working papers • Negotiation and report writing skills Note: Recommended candidates will be subjected to attend a generic managerial competency-based assessment. Background verification, social media checks and security vetting will form part of the selection process and successful candidates will be subjected to security vetting. Correspondence will be limited to shortlisted candidates only. If you have not been contacted within three (3) months of the closing date of this advertisement, please accept that your application was unsuccessful. The NLC reserves the right not to fill any advertised position(s). IMPORTANT NOTICE: • Before sending your C.V please complete the application form Click Here to complete the form. • After completing the application form, please submit your C.V to the following email address: Positions@nlcsa.org.za CLOSING DATE: 13 December 2022 NLC WELCOMES APPLICANTS WITH DISABILITIES DISCLAIMER- POPIA By applying for NLC’s vacancy, you expressly give NLC consent to process your personal information stored in our history of all who have applied will be processed in accordance with the Protection of Personal Information Act 4 of 2013 (“POPIA”), the NLC Human Capital Policy/Procedures, the NLC’s POPIA Policy and the NLC’s Privacy Policy. These documents set out why the NLC needs the personal information, what NLC will do with it, and with whom the NLC will share it. Note that we will not further process the personal information stored automatically in this portal. INTERNAL AUDIT DIVISION INTERNAL AUDIT INFORMATION SYSTEMS OFFICER PURPOSE OF THE JOB: The role of the Internal Audit Information Systems Officer is responsible for undertaking a spectrum of IT audit engagements to assess the adequacy and effectiveness of ICT, financial and operational controls within the NLC to ensure that it is in accordance with corporate governance, the PFMA as well as other applicable laws and regulations and to inform the relevant stakeholders on the state of the control environment SALARY SCALE: • Commensurate with qualifications and experience REQUIRED QUALIFICATIONS • Degree in Accounting, Informatics, Information Systems, Computer Science, Internal Auditing or equivalent. • ISACA membership • CIA/CISA/CISM/CRISC/CGIT/C will be added advantage. REQUIRED WORK EXPERIENCE • At least 3 years’ experience in IT Audit, (external audit or internal auditing), • Experience in data analytics and Cybersecurity / information Security audit will be added advantage. Experience in the management of processes and systems in Regulatory environment KEY DELIVERABLES • To provide a spectrum of IT Audit and data analytics services. • Conduct preliminary survey procedures. Assist in development of audit program. • Conduct audit field work and collect relevant, sufficient and useful audit evidence. • Develop audit working papers. Develop audit findings with all elements of a finding. Assess and evaluate audit evidence. • Develop conclusions on audit findings. Assist in developing draft internal audit reports. • Discuss the internal audit report with the client. • Assist with the Development of the risk based annual audit plan as well as three year rolling plan for IT audit activities. • Assist with the planning and execution of IT audits. • Assist with other internal audit activities and responsibilities. • Perform audits of assigned functions including financial, operational and information technology audits • Assist and provide support the Internal Audit Specialist • Assist with the review and updating of IA Charter • Provide inputs into the development of the risk based IT Audit plan. • Assist in providing Executive Management with the opinions on the effectiveness of the NLC controls • Liaise with external auditors on the internal control issues • Quarterly reconciliation of budgeted external assurance providers and audit fees • Quarterly progress reports on audit work performed by co-source audit firm • Guide, direct and review the work performed by other Audit personnel and co source partner • Maintain a database of prior audit recommendations and co-ordinate the follow-up to validate (quarterly basis) resolutions of the findings • Monitor the implementation of management actions recommended in audit reports • Make oral presentations of audit findings to management and where required, executive management • Regularly monitor the NLC systems and procedures to ensure compliance • Assist with the preparation of reports to be distributed and presented to Commissioner, EXCO, Board Audit Committee and the NLC Board. COMPETENCIES AND SKILLS • Development of a Risk Based Audit Plan • Business Units Business Plan interpretation and management • Knowledge of record keeping methods and procedures for preservation of evidence in line with the NLC File Plan • Strong writing skills including the ability to synthesize information into clear, concise messages both for detailed analytical reports and executive summaries. • Assist with Budget and SLA management • Understanding of processes and systems in Regulatory environment • Audit findings Database management • Preparation and presentation of audit finding to executive management • Strong writing skills including the ability to synthesize information into clear, concise messages both for detailed analytical reports and executive summaries. • Knowledge of record keeping methods and procedures for preservation of evidence in line with the NLC File Plan Note: Recommended candidates will be subjected to attend a generic managerial competency-based assessment. Background verification, social media checks and security vetting will form part of the selection process and successful candidates will be subjected to security vetting. Correspondence will be limited to shortlisted candidates only. If you have not been contacted within three (3) months of the closing date of this advertisement, please accept that your application was unsuccessful. The NLC reserves the right not to fill any advertised position(s). IMPORTANT NOTICE: • Before sending your C.V please complete the application form Click Here to complete the form. • After completing the application form, please submit your C.V to the following email address: Positions@nlcsa.org.za CLOSING DATE: 13 December 2022 NLC WELCOMES APPLICANTS WITH DISABILITIES DISCLAIMER- POPIA By applying for NLC’s vacancy, you expressly give NLC consent to process your personal information stored in our history of all who have applied will be processed in accordance with the Protection of Personal Information Act 4 of 2013 (“POPIA”), the NLC Human Capital Policy/Procedures, the NLC’s POPIA Policy and the NLC’s Privacy Policy. These documents set out why the NLC needs the personal information, what NLC will do with it, and with whom the NLC will share it. Note that we will not further process the personal information stored automatically in this portal.
Comments are closed.
|