JOB SUMMARY
· Oversee/ assume responsibility for ensuring effective implementation of/ compliance with DCP’s control policies and procedures in all areas (financial transactions, operational activities and IT systems).
· Provide assurance to DCP executive management on the effectiveness of financial and operational processes, business application systems, IT infrastructure, and internal control systems in the Head Office and all Plant locations in DCP.
KEY DUTIES AND RESPONSIBILITIES
· Drive the execution of internal audit engagements in accordance with professional audit standards and the DCP’s audit programme.
· Participate in the identification of key risk areas with regards to financial transactions, operational activities and IT systems
· Participate in the development of the annual risk-based audit plan, and the internal audit engagement process
· Lead the execution of audit reviews in accordance with professional audit standards and DCP’s audit requirements
· Develop internal audit schedules for the unit and ensure optimal deployment of resources to priority audit areas
· Propose internal audit activities, plans and resource requirements to the Head, Internal Audit for approval
· Conduct assigned audit exercises in line with professional and ethical standards
· Ensure the implementation of the internal audit methodology for individual projects, monitor implementation of management objectives and provide recommendations for improvement where appropriate.
· Work closely with staff and management of region/ country being audited to obtain accurate and complete information.
· Exercise professional judgment to determine materiality of findings and adequacy/ effectiveness of operational controls.
· Identify potential risk areas and internal control flaws during audits and make appropriate recommendations for corrective action.
· Participate in investigations relating to suspected fraudulent practices across the organization and recommend the appropriate line of action in response to findings
· Perform special/ ad-hoc reviews as requested by Management and the Risk Management & Audit Committee of the Board and present findings
· Provide appropriate post-audit recommendations to improve the internal control system, quality of operational processes and systems.
· Develop and discuss findings and timelines for corrective actions with responsible officers of operations audited.
· Perform post-audit reviews to determine the status of implementation of audit recommendations.
· Oversee the preparation of internal audit reports covering audit activities, findings and overall assessment of control environment.
· Oversee accurate referencing of audit working papers and prompt update of all relevant databases and records.
Financial and Operational Audits:
· Conduct organisation-wide financial and operational audits, including:
- review of all payment vouchers to both internal and external parties;
- audit of sales and payment vouchers (pre-payment audit);
- ensuring appropriate statutory deductions (VAT, WHT etc.) are made in all relevant payments (post-payment audit); and
- financial checks on all cash and credit transactions etc.
· Evaluate the risk management, control and governance processes regarding activities and resources
· Evaluate the effectiveness and efficiency of internal controls in the assigned area
· Conduct assessments of DCP’s financial processes such as revenue collection, asset management, investments, international operations etc.
· Ensure all financial transactions are bona-fide, accurate and processed in line with established policies and procedures.
IT Audit:
· Oversee the evaluation of controls on IT infrastructure and data protection as well as the effectiveness of information security.
· Conduct organisation-wide IT audits, including:
ü Performance of systems and applications
ü Performance of IT networks including server, intranets and extranets
ü Management of enterprise architecture
ü Provision of IT services
· Conduct IT project management reviews to ensure adequacy and implementation of controls
· Perform routine and special audits of information technology infrastructure, and business application systems to ensure adequacy of internal controls in accordance with professional standards.
· Facilitate the evaluation of data controls, integrity checks, and audit trails of operational information systems.
· Conduct data extraction, analysis, and security reviews utilising various databases, spreadsheets and software tools to ensure continuous integrity of data on information systems.
· Take steps to mitigate project risks, and identify strengths and improvements required for future IT projects.
Fraud and Investigation Audit:
· Conduct forensic audits and investigations into cases of frauds, losses and malpractices as required
· Identify key fraud issues which may have arisen either through external changes, internal changes or new legislation.
· Conduct investigations into suspected fraudulent/sharp practices across the organisation and recommend an appropriate line of action in response to findings.
· Oversee the collation and review of all reported cases of fraud from all aspects of DCP’s operations (corporate offices, plants, terminals, depots, etc.)
· Ensure compliance with DCP’s established whistle-blowing system.
· Provide litigation support in the event of arbitration and maintain expert evidence in line with relevant standards.
Others:
· Ensure proper and accurate documentation of the opening and closing meetings on internal audit engagements
· Stay abreast of best practices, new trends and developments in audit methodology, procedures and techniques.
· Periodically make proposals for the review of DCP policies and procedures or for the introduction of new policies to strengthen controls in identified areas
· Participate in assessment of skill gaps in Internal Audit Officers and make relevant recommendations to the HR function via the Head, Internal Audit
· Monitor to ensure team members participate in approved training programs
· Manage the budget for assigned audit exercises and approve expenditure as required.
· Perform other tasks as assigned by the Head, Internal Audit
Requirements
KEY REQUIREMENTS
· Effective reputation management
· Good report writing skills.
· Good supervisory skills.
· High sense of responsibility, accountability and dependability.
· Basic knowledge of ERP systems and other office support tools/ applications.
· Effective crises management
EDUCATION & WORK EXPERIENCE
· Bachelor’s degree or its equivalent in Accounting, Finance, or an IT-related discipline.
· Postgraduate degree in a related field
· Minimum of eight (8) years relevant work experience, with at least two (2) years in a middle management role.
· Membership of any professional bodies will be an advantage.
SKILLS & COMPETENCE
· Relevant professional qualifications such as:
- Certified public accountant (CPA)
- Certified information systems auditor (CISA)
- Certified Internal Auditor (CIA)
- Certified IT Professional (CITP)
- Certified Information Systems Security Professional (CISSP)
- Certified Information Privacy Professional (CIPP)
- Certified in Risk and Information Systems Control (CRISC)
- Certified Fraud Examiner (CFE)
Benefits
· Private health insurance
· Provident Fund
· Paid time off
· Training and Development