IT Audit Manager

The IT Internal Audit Manager is responsible for leading, planning, and executing IT audit engagements across the organisation. This role ensures that IT risks are identified, assessed, and mitigated through strong governance, effective controls, and continuous improvement initiatives. The incumbent provides strategic oversight of IT audit activities, delivers high‑quality assurance reporting, and builds strong relationships with key stakeholders to support the organisation’s risk and compliance objectives.

Roles and Responsibilities

Governance and Risk Management   

• Partner with business and IT stakeholders to promote integrated risk management and assurance practices.
• Conduct risk assessments to identify, prioritise, and scope audit activities.
• Ensure adherence to AECI audit methodologies, policies, and procedures.
• Stay abreast of current internal audit standards, methodologies, and industry best practices.
• Manage and guide co‑sourced partner staff and subject-matter experts on audit projects.
• Assess the design and effectiveness of internal controls and evaluate compliance with relevant laws, regulations, and internal policies.
• Evaluate the adequacy and effectiveness of the organisation’s IT governance structures and processes.

Management of the audit process   

• Develop and execute the annual internal IT audit plan in alignment with strategic objectives and the organisation’s risk profile.
• Engage with co‑sourced partners to evaluate team member suitability, provide guidance, and ensure quality delivery.
• Oversee the execution of audit engagements, including audit program development, interviews, data analysis, and identifying opportunities to enhance assurance through advanced data analytics/CAATs.
• Monitor and track the implementation of audit recommendations.
• Ensure audit processes are value‑adding and result in sustainable, risk‑based improvement actions.
• Review and approve all audit reports submitted by the co‑sourced partner, ensuring accountability for quality and timelines.
• Ensure timely communication of audit results to management.

Operations and Efficiency

• Drive continuous improvement within the internal audit function.
• Assess the efficiency and effectiveness of key business and IT processes relevant to audit activities.
• Analyse and report on the accuracy, completeness, and security of data supporting audit areas.
• Evaluate the effectiveness of management processes aimed at preventing fraud and financial irregularities.
• Manage engagement budgets and related project costs.

Communication and Reporting   

• Clearly articulate audit findings, root causes, and recommendations to management.
• Build and maintain strong relationships with stakeholders to ensure awareness of audit timelines, risks, and opportunities.
• Draft high‑quality audit reports, incorporating key themes and overall audit outcomes.
• Prepare IT Audit Committee, IT Risk Committee, and IT SteerCo reporting, and participate in relevant governance meetings.

Leadership and People Management 

• Guide internal team members and co‑sourced partners on the application of AECI audit methodologies and standards.
• Provide performance-related feedback to co‑sourced partners.
• Demonstrate strong time management and the ability to meet deadlines.
• Foster a high‑performance culture through effective performance management and constructive stakeholder engagement.

Qualifications and Experience

• Must hold a BCom Honours and completed Articles
• Any other relevant postgraduate qualification(s) will be advantageous
• CISA (Certified Information Systems Auditor) essential
• CIA (Certified Internal Auditor) – advantageous
• CA(SA) – advantageous
• CISSP (Certified Information Systems Security Professional) – Essential
• CISM (Certified Information Security Manager) – Essential
• Minimum of 7 years’ experience in Internal Audit, including at least 3 years in a managerial role with involvement in developing the AGIA strategy
• Strong understanding of manufacturing, mining, and chemical industries – advantageous
• Proven experience in SAP auditing essential
• Solid knowledge of International Financial Reporting Standards (IFRS)
• Exposure to manufacturing, mining, or chemicals industry is highly advantageous

Technical Knowledge and Skills

• Strong knowledge of IT audit methodologies, frameworks, and standards.
• Proficiency in data analytics
• Strong regulatory and compliance awareness.

Key Competencies

• Critical thinking and problem-solving.
• Exceptional attention to detail.
• Strong stakeholder engagement and relationship-building.
• Influencing and negotiation skills.
• Strategic thinking in audit planning and execution.
• Resilience, accountability, and the ability to work under pressure.

AECI respects your right to privacy. Please review our privacy policy at https://investor.aeciworld.com/governance.