Job Details

E T Consultant- IT Audit

Description

Do you want to build a career that is truly worthwhile? Working at the World Bank Group provides a unique opportunity for you to help our clients solve their greatest development challenges. The World Bank Group is one of the largest sources of funding and knowledge for developing countries; a unique global partnership of five institutions dedicated to ending extreme poverty, increasing shared prosperity and promoting sustainable development. With 189 member countries and more than 120 offices worldwide, we work with public and private sector partners, investing in groundbreaking projects and using data, research, and technology to develop solutions to the most urgent global challenges. For more information, please visit www.worldbank.org

Group Internal Audit (GIA) helps to protect and enhance World Bank Group processes by providing independent, objective and insightful risk-based assurance and advisory services. We encourage you to visit our website.

Join the World Bank Group's Internal Audit team (GIA), and you will have opportunities to take risks, challenge the status quo, and shape the future by supporting the WBG mission for the greater good. We are looking for people who can think innovatively, are enthusiastic, and enjoy working in teams.

Role:

During this assignment, you will be expected to support Audit Managers, Supervisors or Audit-in-Charge in the execution and delivery of audits/advisory engagements across a range of IT processes and technologies. You will also be expected to actively participate in GIA’s periodic risk assessment exercises and share your knowledge on WBG processes with GIA management and staff.  You will work closely with multiple Managers and Audit Supervisors in executing GIA’s risk-based Work Program.

Responsibilities

•Supports Audit Supervisors or Auditor-in-Charge in the efficient and effective completion of assigned engagements within the IT audit portfolio with utmost focus on quality and impact;

•Participates in audits, leveraging applicable subject matter expertise within enterprise-wide IT processes, including planning and organization, acquisition (development) and implementation, delivery and support, and monitoring;

•Utilizes experience in IT Project Management, IT Service Continuity, IT client services, or other technical areas e.g. specific Operating Systems, Enterprise Platforms, etc. to contribute to the successful execution of IT-related audits and consulting engagements;

•Assists the Audit Supervisor/Auditor-in-Charge in the performance of detailed process walkthroughs and flowcharting of controls as necessary;

•Assists in Work paper documentation in accordance with standards established by GIA;

•Supports the Audit team in the timely execution of audits within the allocated time and resource budgets;

•Builds effective working relationships with relevant client personnel, particularly at the operating level, to support the smooth execution of assigned areas within engagements; and

•Share knowledge and feedback with GIA management and staff and make suggestions for increasing the relevance and impact of GIA’s work.

Reporting:

You will report to Adnan Qureshi, IT Audit Manager. He will be responsible for guidance, performance evaluation and overall learning and professional development. Audit Supervisor, will be your mentor during the assignment. She/he will facilitate your onboarding and learning at GIA and guide you through GIA’s processes and standards.

Standards:

Your work will be guided by GIA standards and relevant Internal Audit Professional Practices, which will be informed by your manager, mentor, and colleagues. 

Selection Criteria

•Master’s degree in relevant fields, e.g. Management Information Systems, Computer Science, Information and Communication Technology and Business Administration, or equivalent 

•Certifications related to Technology or Auditing, such as Cloud provider certifications, Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM)

•A minimum of 2 years relevant experience or equivalent combination, preferably in financial institutions, international organizations, or similar environments. Audit/Consulting experience with Big 4 Firms is highly desired. Preferred experience includes:

•2 years of experience with IT control frameworks;

•Experience applying technical knowledge in at least one of the following areas: IT operations, network operations and/or ERP security and control reviews (Oracle, SAP, PeopleSoft). Knowledge of networks technology, identity and access management, operating systems, midrange platforms, personal computers, system development (SDLC, DevSecOps), databases, client/server architecture;

•Experience as a practitioner or auditor in information security engineering, incident response, system application, and network security, vulnerability management, threat modeling, penetration testing, intrusion detection, firewalls, and encryption technologies.

•Experience in utilizing data analysis in support of internal auditing, presenting results, and drawing conclusions to provide insights into engagement with supervision and guidance. Develops logical viewpoint based on analysis and shows the thought process used to arrive at conclusions;

•Experience in conducting audits of controls in cloud-based environments or emerging technologies such as RPA, IoT, and AI;

•High proficiency in MS Office Suite and creating effective PowerPoint Presentations.

•Good understanding of internal audit practices and procedures with excellent organizational and communications skills; ability to successfully manage high-priority tasks with a variety of stakeholders, and deliver high-quality work;

•Excellent interpersonal skills and stakeholder management.  The successful candidate needs to work collaboratively with internal and external clients;

•Good oral and written communication skills are essential, with the ability to effectively prepare, present, and discuss findings in written and oral form to convey complex ideas in an engaging manner with clarity, diplomacy, and precision. Highly proficient in English, both speaking and writing.

Confidentiality and Conflicts of Interest Management:

While you are at GIA, you are required to keep confidentiality of the information that you will be handling.  You may not discuss information made available to you in the course of audits with any party other than audit clients. You must refer all requests for information related to audit findings to the Audit Supervisor or managers who are responsible for specific projects.  When you interact with audit clients in the context of audits and reviews, you should represent yourself as a GIA staff member and not as a sponsoring unit staff member.  You are required to report any potential conflicts of interest in performing any tasks assigned to you. This includes but is not limited to, any assignments that may directly or indirectly relate to business areas, processes, or transactions that you or your previous unit may have been associated with during the time of your assignment in that unit.  When you have any doubt about keeping your objectivity, you must consult with the manager immediately.

World Bank Group Core Competencies

We are proud to be an equal opportunity and inclusive employer with a dedicated and committed workforce, and do not discriminate based on gender, gender identity, religion, race, ethnicity, sexual orientation, or disability.

Learn more about working at the World Bank and IFC, including our values and inspiring stories.