Job Description

Malander is seeking an experienced IT Auditor to join a leading listed entity based in Sandton. This role offers the opportunity to work across multiple business units, engaging with senior stakeholders, and ensuring effective IT risk management and governance. The ideal candidate will have a strong background in IT audits, risk management, and internal controls, and must be immediately available.
Key Responsibilities:

• Assist in addressing management queries and building/maintaining strong relationships with stakeholders across multiple entities and external audit providers.
• Facilitate the maintenance of IT risk profiles, challenge risk management information, and provide recommendations for improved processes and controls.
• Conduct IT General Control and Application Control reviews, as well as audits on technical infrastructure, project and programme management, cyber and information security, and data assurance.
• Plan, execute, and finalise IT audits in line with the audit methodology, ensuring all risks are identified, addressed, and documented.
• Prepare and review key audit documentation including engagement letters, planning memoranda, system descriptions, walkthroughs, RACMs, and test procedures.
• Perform audit testing, prepare working papers, review the work of junior auditors, and ensure quality of audit files.
• Provide training, guidance, and close supervision to audit team members to ensure objectives and practical coverage are achieved.
• Monitor project budgets, track timesheets, and escalate issues or delays to management promptly.
• Conduct meaningful follow-ups on audit findings and management actions, preparing reports for risk and audit committees.
• Stay up to date with internal audit, IT governance, and industry developments, while contributing to the continuous improvement of audit methodology.
• Support the development of the IT audit team through mentorship, feedback, and training.
• Travel as required to complete audit assignments.

Requirements and Qualifications:

• Bachelor's Degree or equivalent qualification in Computer Science, Computer Auditing, Information Systems, or Auditing (essential).
• Professional certifications such as CIA, CISA, CISM, CRISC, or CGEIT (one or more is required).
• Minimum of 2 years' IT audit experience.
• Strong knowledge of IT General Controls, Application Controls, IT infrastructure (databases, operating systems), and cyber/information security.
• Familiarity with internal controls, risk management frameworks (e.g., COSO), and corporate/IT governance.
• Experience with CAATs and data analytics.
• Strong computer literacy and technical problem-solving skills.
• Advantageous: Bachelor's or Honours degree in progress or completed, and Financial Services industry experience.

Skills Required