Lead IT Auditor

Assurity Trusted Solutions (ATS) is a wholly owned subsidiary of the Government Technology Agency (GovTech). As a Trusted Partner over the last decade, ATS offers a comprehensive suite of products and services ranging from infrastructure and operational services, authentication services, governance and assurance services as well as managed processes. In a dynamic digital & and cyber landscape, where trust & and collaboration are key factors, ATS continues to drive mutually beneficial business outcomes through collaboration with GovTech, government agencies and commercial partners to mitigate cyber risks and bolster security postures.]
- Maintain the annual Division 5-year rolling Health Check Plan.
- Procure and managed services of consultants and independent auditors & augmented resources to augment internal capability to deliver committed deliverables under the Division's 5-year rolling Health Check Plan and other GIG initiatives.
- Facilitate audits conducted by auditors from Auditor General’s Office, WOG ICT Governance Group, Internal Auditor Dept, etc, by managing auditor-auditee interactions during audit fieldwork, and for management responses, audit finding validation and closure.
- Participate in the conduct of health checks and reviews to assess status of adoption of and compliance with policies and standards, to identify non-compliance gaps, to recommend remediation follow-ups, to validate remediated actions and to close the findings.
- Conduct pre-audit compliance health checks on large-scale, complex system high/medium risk areas to establish the status of adoption of and compliance with policies and standards, for regular reporting to stakeholders.
- Establish and maintain the Audit Dashboard for tracking of all health checks and audit findings to ensure timely completion, validation and closure for regular reporting to stakeholders.
- Establish and maintain the Compliance Dashboard for tracking of status of adoption of and compliance with policies and standards for regular reporting to stakeholders; and
- Coordinate with Division's Programme Management Office (PMO) as well as product teams on responses to compliance-related polls for submission to respective parties.
- Provide on-the-job training & guidance to new or junior team-mates on their job responsibilities for governance, compliance & audit.
- Review updates to GIG contextualized Whole of Government (WOG) ICT framework, policies and standards arising from changes in government policies to ensure accuracy, adequacy & consistency across the various ICT&SS domains.
- Manage auditor-auditee interactions when facilitating audits during audit fieldwork, and for management responses, audit finding validation and closure.
- Manage stakeholders when conducting pre-audit compliance health checks on system high/medium risk areas to establish the status of adoption of and compliance with policies and standards, for regular reporting to stakeholders; and
- Manage stakeholders for governance matters ie provide consultancy on policy requirements & impact arising from changes in policies and standards, staff outreach activities and sharing of best practices, etc
- Participate directly or indirectly through contribution of ideas & resources towards projects and initiatives beyond direct line of reporting in support organization high level goals;
- Engage stakeholders regularly and effectively to provide updates on initiatives & to share insights on governance, compliance, and audit matters.

**Requirements**:

- Minimum of 10 years of ICT experience, with experience in managing projects (full software or product development life cycle) and had participated in or facilitated IT system audit exercises; and
- Held supervisory position previously and led a team size of at least 3 staff.
- Professional certifications such as CISA is an advantage.
- Good understanding of IT management processes, technology risks and internal controls, and standards such as ISO9001.
- Good understanding of IT Risk Management and the effectiveness of controls to mitigate the risks.
- Independent and able to multi-task.
- Meticulous and structured, able to deliver good quality results timely, and with eye for details.
- Good written and verbal communication and presentation skills.
- Team player and possesses good interpersonal skills; and
- Able and willing to undertake additional assignments as and when required.

**Benefits**
- A wholly-owned subsidiary of GovTech.
- We promote a learning culture and encourage you to grow and learn.
- A competency framework is in place to help you grow your career with us.