Auditor - Technology Audit.Group Internal Audit and Forensics

MTNs purpose is to enable the benefits of a modern connected life to everyone. The MTN Group Strategy is anchored in building the largest and most valuable platform business with a clear focus on Africa. This rests on a scale connectivity and infrastructure business - mobile and fixed access networks in the consumer, enterprise and wholesale segments.  Within the changing audit, regulatory and governance environment the role must ensure successful delivery in the context of: Diversifying telco-to-techo landscape Evolving industry ecosystems Multi geographic landscape and cultural context Shifting audit landscapes  Sophisticated fraud schemes and systems Omnipresent cybersecurity threats and attacks Evolution of Audit approaches to include multiple lines of defence Driving growth through business intelligence and standardization to maximize business impact New imperatives concerning data privacy and security and building strong digital trust partnerships Constant dynamics and local challenges in the economic, regulatory and legal environments  Mitigating risks, and safeguarding security through business intelligence to maximize business impact Management of demanding investor, customer and supplier expectations  Enhancing MTN reputational position as a leading secure, reliable and safe network and system provider at Group, Platform Business and Markets We at MTN are a purpose and value-led organisation. At MTN, we believe that understanding our people's needs and aspirations is key to creating experiences that delight you at work, everyday. We are committed to fostering an environment where every member of our Y'ello Family is heard, understood and empowered to live an inspired life.  Our values keep us grounded and moving in the right direction. Most importantly, they keep us honest. It is not something we claim to be. It is in our DNA. As an organisation, we consider it our mission to create an exciting and rewarding place to work, where our people can be themselves, thrive in positivity and ignite their full potential. A workplace that boosts creativity and innovation, improves productivity, and ultimately drives meaningful results. A workplace that is built on relationships and achieving a purpose that is bigger than us. This is what we want you to experience with us! Our commitments go beyond an organisational promise. It is in our leadership and managerial ethos to meaningfully partner with our employees, customers and stakeholders with a vision to realise our shared goals. Live Y'ello Lead with Care Can-do with Integrity Collaborate with Agility Serve with Respect Act with Inclusion The Auditor: Technology role is responsible to achieve the following objectives: Audit Management  Assist the Senior Manager in the execution of technology systems and processes audit plans, to identify risks and vulnerabilities in control areas and to ensure that processes and systems comply with company policies, and statutory and regulatory policies. Serves as an active member of the audit team directly executing medium/high priority/risk internal audits on the technology systems and processes: through analysing reports and logs, conducting system and process audits, testing, preparing database updates, providing status reports and preparing final audit reports on assignments carried out, in line with internal audit standards and methodologies. Ensure that audits and assessments consider the effectiveness of the control areas, such as: application controls, cyber and information security, change management, business resilience and disaster recovery reviews, IT project management, IT project governance, IT risk management, information technology systems and infrastructures process and control reviews. Measure/evaluate technology systems and processes compliance to statutory and regulatory requirements and the company's policies and procedures. Track and follow up on audit findings and update respective trackers and stakeholders regularly.  Audit Advisory  Provide analysis on technology systems and processes internal audit data, identifying vulnerabilities in IT systems and internal policies, trends on IT systems failures, inconsistencies, weaknesses in the control areas. Report these findings to management with recommendations on possible mitigations and enhancements. Recommend changes to IT systems and processes, based on internal policies, best practice and continuous change in available technologies. Provide recommendations on improvements to ensure an increasingly robust internal audit processes, which aims to reduce technology and information security risks. Carry out regular, comprehensive and holistic information security and IT systems control assessments, to identify risks and areas that need focus. Keep up to date with new technology solutions to mitigate/change IT systems security vulnerabilities and provides reporting on these solutions. Maintain relationships with management of assigned functional/business units to provide a value-added service. Reporting  Assist the management to provide oversight on OpCo reporting, OpCo coordination, OpCo support and OpCo Technology Audit operations. Assist with compilation of reports for reporting and Audit Committee engaging various stakeholders in Opcos to ensure a comprehensive report.  Key Deliverables Conduct Audits Audit Findings Tracker Audit Findings Report Consolidated Audit Committee Report Role Dependencies Understanding of the Audit plan Active support from the Senior Manager Understanding of the respective technology and business contexts and the risks associated  Intra-functional collaborations with Group Risk and Compliance  Education: Minimum 3-year Diploma Engineering, Information Systems and Computer Systems/Science  Preferred, 4-year Bachelor of Engineering/ Information Systems and Computer Science/ Bachelor of Science Preferred, CISA / CISSP Experience: Minimum 3 years' experience in internal audit, specifically in IT system and processes audits Experience in presenting audit reports to senior stakeholders Data gathering, research and analytical abilities to develop insightful conclusions Experience in supervising and coordinating output  Experience working in a medium organisation Experience in working under pressure and delivering under tight deadlines Key Technical knowledge: Active Directory  Firewall and routers  Network Security API security  Cloud security  Endpoint security Knowledge on various OS's (windows, Linux, Android, iOS, DA's etc)  Experience using various security tools  Capabilities: Analytical Thinker, Problem Solver, Operational Value Creator Culture and Change Champion, Supportive People Manager, Relationship Manager Results Achieve, Operationally Astute  Skills: Organisational Awareness Business Acumen Data Presentation and Communication Strong Investigations Skills - preferably in the context of Technology Project Management Customer Focused Negotiation Report Writing