Management Level
ManagerJob Description & Summary
At PwC, our people in audit and assurance focus on providing independent and objective assessments of financial statements, internal controls, and other assurable information enhancing the credibility and reliability of this information with a variety of stakeholders. They evaluate compliance with regulations including assessing governance and risk management processes and related controls.Enhancing your leadership style, you motivate, develop and inspire others to deliver quality. You are responsible for coaching, leveraging team member’s unique strengths, and managing performance to deliver on client expectations. With your growing knowledge of how business works, you play an important role in identifying opportunities that contribute to the success of our Firm. You are expected to lead with integrity and authenticity, articulating our purpose and values in a meaningful way. You embrace technology and innovation to enhance your delivery and encourage others to do the same.
Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to:
JOB PURPOSE
Experienced IT audit manager that will primarily be responsible for the management of and conduct assessments of IT risks and controls in support of internal and external audit and advisory engagements, related to, IT General Controls and Business Process auditing, IT Third party risk management, IT Service Auditor reporting (SOC 1 and SOC 2) and Security assessments over Cloud platforms & technologies, including the supervision and coaching of junior team members.
Job Profile
PRINCIPAL ACCOUNTABILITIES
The successful candidate will be responsible for:
● Working in a client facing role with a global team and international clients as part of a Centre of Excellence focussed on supporting global PwC Teams in their client facing engagements
● Conduct assessments of IT risks and controls in support of internal and external audit and advisory engagements, related to: ○ IT General Controls and Business Process auditing ○ IT Third party risk management ○ IT Service Auditor reporting (SOC 1 and SOC 2) ○ Security assessments over Cloud platforms & technologies
● Supporting assessments for broader information security topics (cyber maturity assessments, ISO audits, incident management reviews etc.) as well IT general controls.
● Monitoring relevant technology risk standards and practices.
● Developing risk and control matrices and reviewing procedures.
● The review and provision of advice and assistance on business process controls.
● Engagement risk management quality assurance through file review, engagement planning, development and monitoring, engagement profitability - Simultaneously deliver multiple client engagements of varying size, scope and complexity.
● Business development by taking an active role in the business community to increase awareness of the firm's services and level of commitment to the local market, developing and maturing relationships with internal staff and clients, developing proposals, identifying and pursuing opportunities to increase the practice's penetration in the global market..
● Service Delivery by conducting research, performing technical testing, writing reports, conducting interviews and communicating regularly with clients and resources.
● Leading field engagement teams as well as coaching and mentoring junior staff members.
● Actively participate in all aspects of client engagements including planning, scoping, testing, analysis, documentation, reporting and remediation typically including IT control reviews, IT audits, IT risk assessments, IT compliance and related work
● Evaluate IT controls within different contexts, including internal controls over financial reporting (ICFR) engagements (external financial statement audits, Sarbanes-Oxley (SOX) controls audits), Systems and Organization Control (SOC) engagements, and IT audit engagements
● Understand and execute all aspects of Systems and Organization Control (SOC) report readiness and attestation engagements, including planning, executing and reporting, for both SOC 1 and SOC 2 reports
● Execute both IT general controls (ITGCs) as well as business process automated controls (application controls or ITACs) controls testing
● Evaluate IT controls leveraging different frameworks (COBIT, COSO, ITIL, ISO) and across various aspects of clients’ IT organizations, including application systems and infrastructure (OS, DB, network) systems
● Participate in business development activities and proposal development
● Support engagement leadership from a project management perspective (project plans, timelines, budgets, project economics, status reporting)
● Understand how IT controls audit work impacts the client’s broader business. ● Advise client leadership on the design and operational effectiveness of IT controls
● Develop good working relationships and collaborate effectively with colleagues and clients
● Advise client leadership on strategic plans and other business matters, helping our clients anticipate emerging risks and information technology opportunities
● Develop internal controls documentation including internal controls matrices, process narratives, and data flows
● Travel may be required on an ad-hoc basis
MINIMUM QUALIFICATIONS
● Bachelor’s degree in accounting, business,
information technology, computer science or
other relevant discipline
● Prior position in IT Audit – internal audit or
external auditing firm
Additional Desirable Qualifications:
● Certified Information Systems Auditor
(CISA)
● CA (SA)
● CIA
● Professional certification such as CPA,
CISA, CISSP, CISM or CIPP, CDPSE or
other similar qualifications
● Cloud certifications
● Big Four experience
EXPERIENCE
● 7-10 years of experience in IT audit, IT risk and controls, IT compliance or related work
● Minimum 4 years experience in leading teams and managing IT General Controls review assignments.
● Experience in managing complex IT audit engagements (IT general controls, automated application controls and data analytics) within financial services for the full project life cycle from planning through to reporting and socialising outcomes with senior management/ C-suite.
● Experience in managing and performing third party assurance engagements ● Understanding of the different contexts in which IT controls work is performed, including internal controls over financial reporting (ICFR), Sarbanes-Oxley (SOX), SOC 1, SOC 2 and internal audit
● Experience delivering SOC report readiness and attestation engagements, including planning, execution, and reporting
● Strong knowledge of IT general controls
● Experience supporting leadership from a project management perspective including with project plans, metrics, and status reporting
● Ability to interpret and convey technical information to all audiences
● Excellent communication skills with the capability to articulate, write and present information in a clear and understandable manner
● Excellent analytical and problem-solving skills
● Strong time management and organizational skills with ability to effectively manage competing priorities
● Experience in auditing Robotic Process Automation (RPA) and AI will be advantageous.
● Experience with multiple technology domains including Windows, Unix/Linux, Oracle, SQL and/or database administration, software development and networking.
KEY KNOWLEDGE & SKILLS
Technical knowledge
● Proficient in the use of Microsoft spreadsheets, Word and Powerpoint or Google sheets, Docs and Slides
● Working knowledge of project management frameworks such as Waterfall and Scrum.
● General understanding and working knowledge of information security protocols and principle of relevant regulations and industry standards such as NIST, FFIEC, SOX, SOC, COSO, COBIT, ITIL, ISO27001, PCI, HIPAA and GLBA, plus best practices and methodologies to address these requirements
● Understanding of emerging technologies, such as cloud, RPA and AI
Ability to acquire digital skills and self upskill in areas such as data analytics and data visualisation using firm provided tools.
● Understanding of ERP systems and other peripheral business systems. Soft skills
● Outstanding interpersonal, communication and influencing skills
● Ability to communicate effectively with technical and non-technical audiences ● Excellent leadership and teamwork skills.
● Proactive, hands-on, results-driven orientation required.
● Ability to blend exceptional attention to detail with an ability to retain strategic direction within a rapidly evolving entrepreneurial business culture.
● Ability to produce high quality work to team managers
● Self learning and continuous improvement of skills and knowledge
● The ability to be resilient and maintain high motivation levels under pressure; ● pragmatic; excellent problem-solving and decision-making skills
● planning and organising skills
● Ability to work independently Other beneficial skills
● Finance and accounting practices and methods.
Data analytics and visualisation tools
● Scripting experience (Oracle, Windows, Linux, SQL)
● ERP controls
● Cloud
Travel Requirements
Up to 20%Available for Work Visa Sponsorship?
NoJob Posting End Date
March 8, 2026