Competencies
• Strong hands-on experience in auditing information systems, IT processes, and internal controls
• Sound knowledge of international standards and frameworks related to information security, IT governance, and emerging technologies
• Proven experience and practical understanding of auditing ERP systems, including Oracle Fusion
• Ability to generate positive working relationships with the business, but remain robust when required
• Effectively communicate thoughts, ideas, information, and messages in writing or verbally. Fair reporting and presentation skills
• Elementary problem solving and analytical skills. Recognize problem, identify root cause, develop action plans and monitor implementation
• Understand the risk, control and governance arrangements if the organization and how these related to the work of internal audit
• Ability to obtain relevant information, make appropriate analyses and understand the relative significance of issues
• Ability to write concise, accurate, logical, well summarised reports
• Ability to present and support viewpoints with logical, well-grounded thinking
• Collaborate constructively and effectively with all colleagues throughout the organization
• Good command of English, verbal and written
• Excellent report writing skills
• Sound experience in the entire audit cycle, application of internal audit standards & fraud investigation
• Keen eye for detail
HSE Behavioral Skills
• Adhere to NMDC HSE Policy
• Follow the HSE Management System procedures and safe working instructions
Responsibilities:
• Execute IT audit engagements covering IT governance, cybersecurity, project management, ERP systems and applications, IT operations, infrastructure, and emerging technologies, in accordance with NMDC Group’s audit policies and procedures, applicable international standards (including CIS, NIST, COBIT, ISO, OWASP, SANS), and agreed time budgets, while ensuring effective use of relevant audit frameworks, tools, and software
• Assess IT controls, systems, platforms, architectural designs, and functionalities to identify risks, threats, and control gaps, and leverage this assessment to design appropriate audit testing procedures
• Review and analyse complex data sets, systems, and processes to identify control weaknesses, assess the significance and impact of identified issues, and develop practical, risk-based recommendations for improvement
• Perform and support advisory and consulting engagements at the request of business units or as directed by the Group Internal Audit Director
• Support the Internal Audit & Data Analytics Team Leader in conducting IT risk assessments to establish the IT Audit Universe and develop the annual IT Audit Plan
• Assist the IA&DA - TL with departmental initiatives and projects, including internal audit strategic initiatives, development and implementation of the IT Internal Audit strategy, continuous control monitoring, and data analytics activities
• Contribute to the preparation of Audit Committee presentations, audit status updates, and management reports.
• Provide support for the maintenance and effective utilization of the Audit Management System (AMS), ensuring alignment with Group Internal Audit procedures and supporting internal audit staff as required
• Identify and help define department technology requirements to advance automation, data analytics, and AI in audit activities, while understanding assigned functions and operations to assess control adequacy, resource efficiency, and opportunities for profit or cost-effective improvements
• Conduct research, analysis and benchmarking for the process under review
• Participate in the development of audit planning documents such as audit scope, process understanding, audit program, etc., to ensure all risk are identified and are addressed in the plan
• Utilise Internal Audit System during the conducts of audit as required
• Identify sufficient, factual, reliable, relevant and useful information to achieve the audit objectives
• Perform testing of internal controls to ensure the design is effectiveness
• Ensure that sufficient documentation is gathered in order to understand the audited business process
• Prepare and adequately maintains working papers, which record and summarize data on the assigned audit areas and the results of the audit examination
• Develop or assist in developing the audit report and recommendations
• Assist in developing MIS report by analysing the status of implementation of management action plan
• Perform or participate in special review or ad-hoc assignments as directed
• Prepare minutes of meeting for all meetings attended/participated
• Ensure compliance to all relevant safety, quality and environmental management procedures and controls across the department to guarantee employee safety, legislative compliance, delivery of high quality products/service and a responsible environmental attitude
Qualifications:
• Bachelor’s Degree in Information Technology, Software Engineering, or equivalent
• Professional certification such as CISA, CISM or CISSP from an accredited institution, or equivalent
• Master’s Degree is an advantage
Relevant Experience
• Minimum 05 years of relevant experience in similar roles and industries