Duties/Pligte
- Planning, coordinating and overseeing audit engagements, ensuring timely completion of audit request.
-
Facilitating audit kick-off meetings and overseeing the entire audit process, ensuring effective communication and collaboration between stakeholders.
-
Leading project planning for audit-related mitigations and follow-up actions.
-
Serving as the primary liaison between Stellenbosch University (SU), internal teams, internal and external auditors.
-
Ensuring alignment of audit activities with industry frameworks and standards, including COBIT, NIST, TOGAF, and ITIL.
-
Overseeing and guiding IT control testing, ensuring comprehensive coverage and effectiveness.
-
Providing expert advice on IT governance, risk, and compliance matters.
-
Preparing and presenting audit findings, recommendations, and reports to senior management.
-
Driving continuous improvement in audit processes and methodologies.
-
Maintaining awareness of IT controls, cybersecurity requirements and compliance obligations.
-
Identifying process gaps and supporting continuous improvement in IT governance and compliance.
Job Requirements/Pos Vereistes
- NQF Level 8 in an IT, computer science, auditing or IT related field with five years' experience in IT audit, IT compliance or IT risk management, OR NQF Level 7 in an IT, computer science, auditing or IT related with eight years' experience in IT audit, IT compliance or IT risk management.
-
Proven experience in IT audit management, governance, and risk within a complex organisation.
-
Strong knowledge of and practical experience with COBIT, NIST, TOGAF, and ITIL frameworks.
-
Demonstrated ability to manage multiple audits and projects simultaneously.
-
Excellent communication, stakeholder management, and report-writing skills.
-
Analytical mindset with attention to detail and problem-solving abilities.
-
The ability to work collaboratively with internal and external stakeholders.
-
High attention to detail and accuracy.
-
The ability to translate technical IT evidence into audit-ready documentation.
Recommendation/Aanbeveling
- Professional certifications such as CISA, CRISC, CGEIT, or similar will be advantageous.
-
Experience in higher education or public sector environments is preferred.