Title: Manager, Information System Audit, Internal Audit Department
Company Name: BRAC
Vacancy: Not specific
Job Location: Dhaka
Employment Status: Full-time
∎ Graduate/ Post-graduate in Software Engineering / Computer science and Engineering from any recognized university with minimum second class/ division or equivalent GPA/ CGPA 2.50 in all academic examinations
∎ 6 to 7 year(s)
∎ Provide critical inputs to the sectional annual work plan and monitor their implementation
∎ Plan for integration of available software like BIAMS, Risk Management, ERP and create a world class system for review of internal control weaknesses at BRAC
∎ Plan and ensure detailed succession planning for grooming future leaders
∎ Assist in preparation and implementation of risk-based informational systems audit
∎ Assess IT general controls and cyber security systems in operation of software at BRAC programmes and enterprises
∎ Support the development of BIAMS Software Design, mapping, etc. in light of new organisation changes
∎ Develop exception reporting systems, its frequency, and communicate with management the impact of those
∎ Execute the updates of audit methodology and techniques
∎ Facilitate ICQ (self-audit system) automation development process
∎ Preparation of various MIS reports
∎ Directing the team and review and finalize the IS audit reports and any special assignment which is assigned by the management.
∎ Present IS audit to the different programmes, departments and donors as well as to the external auditor regarding expectation from audit, scope of audit, methodology of audit, annual audit plan to minimize expectation gap
∎ Take feedback from programme managements on their expectation of IS audit services.
∎ Plan staff allocation for audit based on risk magnitude
∎ Conduct periodic training and workshops to promote awareness of information system and BIAMS operation
∎ Ensure a good behavioral practice exist in supervisor and supervisees within the environment of IAD and BRAC
∎ Ensure respective team is highly complied with code of ethics IAD, IIA, ISACA and IFAC by initiating appropriate response to the issue raised by external stakeholders
∎ Ensure the safety of team members from any harm, abuse, neglect, harassment and exploitation to achieve the programme's goals on safeguarding implementation. Act as a key source of support, guidance and expertise on safeguarding for establishing a safe working environment
∎ Practice, promote and endorse the issues of safeguarding policy among team members and ensure the implementation of safeguarding standards in every course of action.
∎ Follow the safeguarding reporting procedure in case any reportable incident takes place, encourage others to do so
∎ Professional requirement:
∎ Candidate should have ISO 27001 Certification, CCNA, MCSA, RHCE, CSA, CEH, SSCP
∎ CISA, and Google or AWS cloud solution architect certification will be added advantage
∎ MYSQL or any other application and database working experience will be added advantage
∎ Experience Requirements: 6-7 years' experience in the field of Information System audit, Information security, Information technology
∎ Additional Job requirements:
∎ Sound knowledge ISACA Standards, IIA Standards, Country's Law and Regulations, Internal Control Systems, Finance, Accounts and Compliance
∎ Have strong IT controls, Advanced IT, Communication and interpersonal skills, internal audit, Risk management, Business process evaluation
∎ Have strong People Management, Analytical Ability, Problem Solving, Negotiation, Pro-activeness, goal-oriented
∎ Contribute in audit software development activities and process improvisation
∎ Coordination in Annual Inventory and other special assignments
∎ Review the existing Internal Audit Policies and Procudures in compliance with new Standards of ISACA, IIA, COSO framework, new changes in audit tools and techniques along with organisational requirements
∎ Identify weaknesses in the system and create action plan to prevent security breaches
∎ Travel to client sites
∎ an audit process that specifically evaluates whether systems and applications are controlled, reliable, efficient, secure and effective
∎ Ensure that previous audit recommendations are addressed and implemented
∎ Perform the system, database, network, and application security assessment and configuration review
∎ Any other responsibilities assigned by the supervisor or senior management
∎ Age: N/A
Compensation & Other Benefits:
∎ Festival Bonus, Contributory Provident Fund, Gratuity, Health and life Insurance and others as per organisation policy.
Job Source: Bdjobs.com Online Job Posting.
Application Deadline: 19 Oct 2021
∎ 12 Oct 2021
∎ Business : BRAC’s vision is a world free from all forms of exploitation and discrimination where everyone has the opportunity to realise their potential. The organisation was founded in Bangladesh in 1972 and acts as a catalyst, creating opportunities for people to transform their lives. BRAC believes in integrity, inclusiveness, effectiveness, and innovation in all areas of work. BRAC uses an integrated model to change systems of inequity, through social development programmes, humanitarian response, social enterprises, socially responsible investments and a university. It operates in conflict-prone and post-disaster settings in 11 countries across Asia and Africa.
BRAC is a global leader in developing cost-effective, evidence-based programmes, and has been ranked the #1 NGO in the world for the last five years consecutively by NGO Advisor.