Job Purpose
The Internal Auditor will work in the ICRC Internal Audit Centre of Expertise in Manila and will be a member of ICRC’s global Internal Audit team.
His/her primary aim will be to provide auditing expertise in one or more of the following areas: information systems, digital transformation, cybersecurity, data protection, performance management, data analytics.
S/he will support Internal Audit in the discharge of their duties as set out in Article 14 of the ICRC Statutes, in evaluating the relevance, effectiveness and efficiency of ICRC’s governance, risk management and control processes at headquarters and in delegations, and in providing recommendations for improvement.
Fluency in English (written and oral) is required, with knowledge of another language (French, Spanish, Russian, Arabic) a strong asset. A great level of autonomy is expected from the internal auditors, especially when managing co-sourced or out-sourced audit assignments involving highly specialized consultants (e.g. penetration tests). Furthermore, knowledge and experience in change management would also be a strong asset.
His/her reporting line will be to the Deputy Head of Internal Audit / Head of the Internal Audit Centre of Expertise based in Manila.
Main Responsibilities
As a member of the team, you will be called upon to perform the following tasks on the basis of the International Professional Practice Framework (IPPF) of the IIA:
· Conduct audits as per the Annual Audit Plan approved by the Assembly (i.e. thematic, delegation, investigations, specific topics, etc).
· Provide expertise and input as per your area(s) of specialization (see above) into audit assignments or investigations, as needed / requested by the Internal Audit management.
· Improve data-related internal audit processes and effectiveness through proactive automation and analysis, where appropriate.
· Evaluate: the ICRC’s governance, risk management and internal control system, the ICRC’s compliance with laws, regulations, strategies, policies and procedures in place; whether the ICRC’s resources are used in an effective and efficient manner and are protected adequately; the ICRC’s strategies and operations.
· Write audit reports and communicate results and recommendations.
· Contribute to the methodology and strategy of the Internal Audit.
· Maintain high quality work standards and remain up to date with the evolution of standards and practices.
· May coordinate teams in the conduct of audit assignments in complex environments (depending on plans and decisions by Internal Audit management).
· Create, maintain and support a variety of moderate to complex reports and dashboards utilizing appropriate reporting tools.
· On the basis of available source of data, support the team in studying and identifying trends related to the Internal Audit areas of concern.
Selection Requirement and Profile
· Advanced university degree
· Professional certification (CIA, CISA, ISO 27001, COBIT 2019, CISSP, CRMA, etc)
· Excellent command of English, with preferably one or more other languages (French, Spanish, Arabic, Russian)
· Proven proficiency in one or more of the following areas: auditing information systems, digital transformation, cybersecurity, data protection, performance management, data analytics
· Between 7- and 10-years’ experience in auditing such areas in large organizations (private, public international organisations, or non-governmental), with positions of progressive responsibility
· Experience and knowledge in change management (an asset)
· Availability to travel abroad upon request, as relevant to the scope of the audit (indicative 20%)
What we offer
This vacancy is archived.