Job Description

One of our government clients is looking for a Sr. IT Audit Specialist - Government (CAATs, FIPPA, PHIPA, PIPEDA)
Length: 6 months contract with a possibility of extension
Location: Toronto, ON

PURPOSE:

• To plan, lead and/or conduct information technology (IT) assurance, advisory and consulting engagements to help ministries and agencies manage risks, resolve issues, and comply with governing laws, regulations, OPS policies and standards.
• To provide strategic advice to key decision makers at all levels of management, to develop and to effect changes to IT policies, standards and processes to improve delivery of government programs and services for Ontarians.

KEY RESPONSIBILITIES:

1. IT Audit and Risk Management

• Plans, leads and/or conducts a broad range of assignments including sensitive, and high priority IT audits, reviews, consulting engagements and special investigations to help ministries and agencies manage risks (including risks associated with current and emerging technologies) and resolve issues in areas such as I&IT Governance, Strategy, System Development and Security.
• Assesses compliance of IT systems and processes against OPS IT directives, policies, standards and governance control frameworks to assist management in delivering government mandates and priorities.
• Analyses information, prepares and presents concise evidence-based reports to senior and executive management on issues identified and provides recommendations to address risks and improve efficiency.
• Researches and identifies risks associated with emerging technologies and recommends controls to mitigate risks and protect government information assets.
• Assists the Manager, Information Technology Audits or Audit Director in yearly audit planning.

2. Advisory and Consulting Services

• Contributes to and influences the development and enhancement of OPS IT policies, directives, standards, and process improvement initiatives through a wide-range of consulting and assurance engagements.
• Provides strategic advice to all levels of management on IT governance, risk and control frameworks across the ministries/agencies for effective risk management.
• Provides technical and project management advice to I&IT Cluster on leading-edge technology solutions and major system development to enhance IT and Business operations and service delivery to Ontarians.
• Leads and/or conducts special engagements to assist government\'s compliance with legislations/regulations and industry standards (e.g. Payment Card Industry Standards, SyStrust, etc.).
• Provides advice and guidance on cost-benefit and process improvement solutions to meet program area\'s IT/business objectives.

3. Client Relationship Management

• Builds and sustains positive client relationships with all levels of management (ministries and agencies) and establishes professional trust and credibility by adhering to professional auditing standards and code of ethics.
• Negotiates effectively to gain client buy-in and cooperation in resolving contentious issues arising from audit engagements.
• Collaborates with senior and executive management in developing action plans to address audit recommendations and improvement initiatives. Fosters and maintains open communication and participates in ministries/agencies and I&IT clusters\' initiatives to gain better understanding of their priorities and challenges to support the achievement of their goals and objectives.

4. Project Management

• Provides project management expertise, consultation and advice through review of IT/Business projects to manage project risks.
• Develops comprehensive audit engagement plans which include audit approach, scope, objectives, specialized audit programs, resource requirements, terms of reference and relevant work plans to meet specific engagement objectives.
• Leads a team of audit staff (internal and external) in integrated and specialized audit engagements, special projects and initiatives, which involve resources with diverse background, knowledge and skills to satisfy engagement objectives.
• Manages and reviews work performed by external service providers to ensure consistent delivery and quality of service and products.

5. Quality Assurance and Process Improvement

• Leads and facilitates risk assessment sessions for Ministry management groups to help identify key organizational risks and improve processes. Performs quality assurance function as a dedicated resource for high risk IT projects within ministries or agencies.
• Contributes to the ongoing continuous improvement in the division through involvement in a quality assurance program and continuous improvement activities.
• Researches, identifies and implements best practices for enhancing auditing process such as use of Computer Assisted Auditing Techniques (CAATs).

KNOWLEDGE / SKILL

• Generally accepted auditing standards, IT control frameworks and specialized auditing techniques to plan, lead

...

and conduct IT and business audit engagements, consulting, advisory and special investigation assignments.

• Government IT policies, directives, standards and processes to evaluate compliance and to provide advice on risks associated with IT infrastructure, business-IT systems, IT Service management (e.g. change and problem management), corporate service management (security, procurement, emergency management, business continuity, disaster recovery management), and service delivery channels. Information Technology, including systems under development, emerging technologies, security, e-commerce, telecommunications and networks, computer operations, and critical business and IT applications and systems to help improve overall control and governance frameworks.
• IT Governance to assist decision makers support business objectives, strengthen overall corporate governance practices, and avoid failures that result from a misalignment between IT and business strategies.
• Information Security including the protection of confidentiality, integrity and availability of information assets, information privacy and security of Government information and infrastructure assets against the risks of loss, misuse, disclosure, damage and any issues leading to public embarrassment.
• Information Management including records management, e-discovery techniques to ensure compliance with relevant legislations (FIPPA, PHIPA, PIPEDA, Archives and Recordkeeping Act) and to facilitate use of good information for appropriate decision making by the government.
• Client business programs, policies, practices and legislative authorities to carry out audits, consultations and advisory assignments.
• IT risk management methodologies and concepts to assess risk management practices and to provide advice to senior officials and client management. Project management standards, best practices and frameworks to lead and conduct audit of IT projects and business transformation initiatives, and to provide advice to key stakeholders on projects.
• Oral and written communication skills to prepare audit reports, reviews, research and statistical reports, briefing materials and correspondence; presentation skills to present information and audit findings, options and recommendations to senior officials and managers.
• Computer software/applications (e.g. word processing) to prepare various materials and products and specialised auditing applications, tools and techniques (e.g. IDEA, ACL, Sharpe Decisions) to facilitate evaluation of data and risks associated with IT systems.

INTERPERSONAL / INFLUENCING SKILL

• Relationship management skills to build and sustain relationships and establish trust and cred bility with all levels of management including senior and executive management.
• Influencing skills to contribute to the development of OPS IT Directives, Policies and Standards to improve availability, performance and security of systems and enable more efficient, effective and economical delivery of government services.
• Influencing, negotiation and mediation skills to manage client expectations; address and resolve contentious issues arising from audits and the acceptance of audit observations, current practices and proposed options to improve effectiveness and efficiency of processes and controls. Interviewing skills to collect information to fulfill engagement objectives based on ministry client\'s business needs.
• Communication, presentation and facilitation skills to explain the risks, exposures and impact to business clients and help support the implementation of audit recommendations to influence outcome.
• Consultation and negotiation skills to build and nurture relationships with internal and external stakeholders to influence decision-making related to IT strategy, programs or projects such as the use of external service providers and deployment of new technology.
• Facilitation, instruction and communication skills to provide technical advice, direction, training and coaching to multi-disciplinary project teams, and to provide leadership in risk assessment information sessions and workshops.
• Analyzing and problem-solving skills to:
• Interpret and apply legislations, regulations, OPS policies, directives, standards, governance and control frameworks (e.g. FIPPA, PHIPA, PIPEDA, AODA, PCI, SyStrust) to assess and advise clients on compliance requirements.
• Evaluate information from diverse sources to identify issues, perform root-cause/trend analysis and make recommendations to senior and executive management on risk mitigation strategies.
• Evaluate IT related risks and translate them into business impacts so that clients can understand the degree of severity and impact if the risks are not addressed.
• Assess IT and Business transformation projects for early warning signs of failure and advise clients on a timely basis for remedial actions.
• Occasional unexpected changes to deadline; tight time pressures; disruption of personal life due to working in different client locations and travel requirements.
• Occasional requirement to work beyond normal hours of work to meet client\'s requirements.

URGENT: Please read the job description above. If this interests you, apply to the job with your most updated resume, including your contact number and email address.

The recruiter in charge of this role is Prakash.

If you do not think you are a match for this opportunity, but know someone who is, feel free to forward this job description to them and you will be eligible for a referral bonus upon a successful hire.

Please note that this is the most up to date version of job description available at this time - During Client Interview you will receive additional information - variance may apply!

Please note: Adherence to our end client\'s vaccination policy is a requirement.

Please visit the TEAMRECRUITER website to review other CAREER OPPORTUNITIES!

Jobboom