Senior IT Internal Auditor

PHL - Three/NEO

QBE Insurance

QBE Insurance Group is one of the world's top 20 insurance and reinsurance companies, located in 26 countries. Visit us for company information.

View all jobs at QBE Insurance

Apply now Apply later

Primary DetailsTime Type: Full time

Worker Type: Employee

The role is expected to lead IT related internal audits end-to-end, ensuring that key deliverables and milestones are achieved. They are expected to perform risk assessment and controls testing and contribute towards the completion of the work programme and drafting of audit reports.

Responsibilities:

Lead audit engagements, developing timetables, engaging stakeholders, and coordinating the key deliverables.
Ensure audits are conducted in compliance with the Group Audit Manual, to a high standard and within deadlines.
Proactively gather information, assess risks and develop Audit Work Programs.
Test and conclude on the design and effectiveness of mitigating controls.
Use approved tools (TM+ audit application, templates, sampling methodology, data analytics) for conducting and documenting work.
Communicate audit findings and work with management to address control deficiencies, recommend remediation plans and monitor management actions.
Draft issues and observations in accordance with GIA methodology and reporting requirements for inclusion in the audit report.
Support the adoption of best practices and new initiatives to improve efficiency and effectiveness of the team, coaching junior team members where necessary.
Perform complex audits and reviews that require experienced staff.
Understand and support implementation of GIA strategy.


Work Experience:



Necessary Work Experience includes:

Moderate relevant experience in insurance or assurance (audit/risk management).
Preferred Work Experience includes:

In depth knowledge of an IT process or technology specialist.
Good knowledge of other IT operational processes and technologies, relating to IT Governance, Strategy and Architecture, Application Development and Maintenance, Infrastructure / Service management and Information Security.
Knowledge of IT audit processes and approaches.
Basic knowledge of IT frameworks including COBIT, ITIL, ISO27001, NIST, etc.
Experiene in conducting data analytics.
Good knowledge of the IT industry, IA principles and risk management principles.


Qualifications:



Necessary Qualifications include:

Tertiary Degree or equivalent combination of education and work experience.

Preferred Qualifications include:

Relevant qualifications iin IT or IT assurance or equivalent (e.g. CISA, CISSP, CRISC or equivalent).
Additional specialist vendor certifications.


Global Disclaimer:



The duties listed in this job description do not limit the assignment of work. They are not to be construed as a complete list of the duties normally to be performed in the position or those occasionally assigned outside an employee’s normal duties. Our Group Code of Ethics and Conduct addresses the responsibilities we all have at QBE to our company, to each other and to our customers, suppliers, communities and governments. It provides clear guidance to help us to make good judgement calls.



US Only Disclaimer:



To successfully perform this job, the individual must be able to perform each essential job responsibility satisfactorily. Reasonable accommodations may be made to enable an individual with disabilities to perform the essential job responsibilities.



US Only - Travel Frequency:



Infrequent (approximately 1-4 trips annually)



US Only - Physical Demands:



General office jobs: Work is generally performed in an office environment in which there is not substantial exposure to adverse environmental conditions. Must have the ability to remain in a stationary position for extended periods of time. Must be able to operate basic office equipment including telephone, headset and computer. Incumbent must be able to lift basic office equipment up to 20 lbs.

Responsibilities:

  • Lead audit engagements, developing timetables, engaging stakeholders, and coordinating the key deliverables.
  • Ensure audits are conducted in compliance with the Group Audit Manual, to a high standard and within deadlines.
  • Proactively gather information, assess risks and develop Audit Work Programs.
  • Test and conclude on the design and effectiveness of mitigating controls.
  • Use approved tools (TM+ audit application, templates, sampling methodology, data analytics) for conducting and documenting work.
  • Communicate audit findings and work with management to address control deficiencies, recommend remediation plans and monitor management actions.
  • Draft issues and observations in accordance with GIA methodology and reporting requirements for inclusion in the audit report.
  • Support the adoption of best practices and new initiatives to improve efficiency and effectiveness of the team, coaching junior team members where necessary.
  • Perform complex audits and reviews that require experienced staff.
  • Understand and support implementation of GIA strategy.

Work Experience:

Necessary Work Experience includes:

  • Moderate relevant experience in insurance or assurance (audit/risk management).

Preferred Work Experience includes:

  • In depth knowledge of an IT process or technology specialist.
  • Good knowledge of other IT operational processes and technologies, relating to IT Governance, Strategy and Architecture, Application Development and Maintenance, Infrastructure / Service management and Information Security.
  • Knowledge of IT audit processes and approaches.
  • Basic knowledge of IT frameworks including COBIT, ITIL, ISO27001, NIST, etc.
  • Experiene in conducting data analytics.
  • Good knowledge of the IT industry, IA principles and risk management principles.

Qualifications:

Necessary Qualifications include:

  • Tertiary Degree or equivalent combination of education and work experience.
     

Preferred Qualifications include:

  • Relevant qualifications iin IT or IT assurance or equivalent (e.g. CISA, CISSP, CRISC or equivalent).
  • Additional specialist vendor certifications.

Global Disclaimer:

The duties listed in this job description do not limit the assignment of work. They are not to be construed as a complete list of the duties normally to be performed in the position or those occasionally assigned outside an employee’s normal duties. Our Group Code of Ethics and Conduct addresses the responsibilities we all have at QBE to our company, to each other and to our customers, suppliers, communities and governments. It provides clear guidance to help us to make good judgement calls.

US Only Disclaimer:

To successfully perform this job, the individual must be able to perform each essential job responsibility satisfactorily. Reasonable accommodations may be made to enable an individual with disabilities to perform the essential job responsibilities.

US Only - Travel Frequency:

Infrequent (approximately 1-4 trips annually)

US Only - Physical Demands:

General office jobs: Work is generally performed in an office environment in which there is not substantial exposure to adverse environmental conditions. Must have the ability to remain in a stationary position for extended periods of time. Must be able to operate basic office equipment including telephone, headset and computer. Incumbent must be able to lift basic office equipment up to 20 lbs.

Skills:

Accounting, Analytical Thinking, Audit Management, Communication, Corporate Governance, Critical Thinking, Detail-Oriented, Financial Products, Intentional collaboration, Managing performance, Operations Management, Problem Solving, Risk Management, Stakeholder Management, Working Independently

How to Apply:

To submit your application, click "Apply" and follow the step by step process.

Equal Employment Opportunity:

QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  1  0  0
Category: Compliance Jobs

Tags: Analytics Audits CISA CISSP COBIT Compliance CRISC Data Analytics Governance ISO 27001 ITIL NIST Risk assessment Risk management Strategy

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.