Senior I.T. Auditor

18 يناير، 2023

0 0 2 دقائق

Senior I.T. Auditor

الوصف الوظيفي

Senior I.T. Auditor | Group Audit | Corporate Services

JOB PURPOSE

Effectively appraise SAP/Other Computer applications, evaluate the suitability, security, integrity, adequacy, efficiency and effectiveness and ensure that the systems fulfill the user/business requirements and have adequate security and controls built-in.

KEY ACCOUNTABILITIES

Existing Systems – Evaluate existing computer systems and ensure its confidentiality, security, integrity, availability, compliance, effectiveness and efficiency. Review of existing computer application system controls and procedures covering systems, data, facilities, people, which includes:

Identification of different kinds of risks (security, continuity, technology, etc.), assessment of their impact and recommendation of cost- effective measures to mitigate risks.
Conducting data integrity checks to ensure data remains complete, accurate, and valid.
Review and testing of business continuity plans and procedures.
Review of system-enabled business processes to ensure efficiency and compliance with company policies, laws and regulations.
Identify weaknesses and critical areas in the systems and advise solutions

SAP Configuration – Examine SAP configuration settings to ensure that the systems are configured in accordance with business requirements, which includes:

Ensuring that the use of the system functionality is optimized while addressing business requirements as well as security and control considerations.
Review of configuration test procedures, user acceptance and control procedures for transports to production.

SAP Authorizations – Review SAP authorizations to ensure proper security, control, confidentiality and segregation of duties are maintained in the system, which includes:

Identification of critical authorizations and ensuring proper systems are in place to grant and monitor use of such authorizations.
Review of change control procedures for the above authorizations.

ABAPs – Verify new ABAPs and the changes made if any, in order to ensure adherence to established programming standards and proper change control procedures.

Verification of all new ABAPs and changes made existing programs to ensure that programming standards and change control procedures are adhered to, including adequate testing and signoff prior to moving to Production system.

SAP System Process – Perform integrated audits coverings SAP system processes and related operational procedures with operational auditors in order to assess its security integrity, effectiveness and efficiency.

Integrated Audits: Guidance and supervision of work done by operational auditors.

New Systems – Review various phases of system development life cycle to ensure that the new or developed application systems fulfill the user/business requirements and have adequate security/controls built-in.

Review of the deliverables in each phase of SDLC for new or developed systems from a security audit and control perspective, which include feasibility study, business system specifications, testing, conversion and post-implementation review.

Special Assignments – Perform/participate in any special assignments i.e. review, study, audits or investigations in order to evaluate a specific situation.

Perform or participate in special reviews, studies, audits and investigations. Prepare report on the findings and provide suggestions to be implemented as appropriate.

المهارات

QUALIFICATIONS, EXPERIENCE, & SKILLS

Minimum Qualifications and Knowledge:

CISA and Member of a Professional body of Accountants eg ACA/CPA/ACMA etc.

Minimum Experience:

4 -5 years experience in IS Audit of which at least 1-2 years in SAP environment.

Job-Specific Skills:

SAP/Information Systems Auditing. Analytical and conceptual skills. Exceptional ability in report writing and oral communication. SAP Configuration, ABAP and RDBMS concepts.