Audit Specialist, IT
New York City (United States of America)
The Office of Audit and Investigations (OAI) reports to the Administrator and is responsible for internal audit and investigations services to UNDP and its affiliated entities. OAI provides independent, objective assurance on the effectiveness of risk management and the effectiveness and adequacy of internal controls.
OAI has a decentralized organizational structure with the Directorate, the Investigations Section, the Headquarters Audit Section and other units located at Headquarters and Regional Audit Centres located in the five regions covered by UNDP (Kuala Lumpur/Malaysia, Pretoria/South Africa, Dakar/Senegal, Panama City/Panama and Istanbul/Turkey). UNDP increasingly relies on information technology and systems (IT) to conduct its business. In response to the increasing mission critical nature of IT to the organisation, OAI is strengthening its IT audit capacity.
The IT Audit Specialist reports to the Chief ICT Audit Section (P5), under the overall supervision of the Deputy Director, Audit, OAI.
Duties and Responsibilities
The primary role of the IT Audit Specialist is to participate in comprehensive information systems audits of corporate IT systems, to provide IT audit support to audit teams in OAI, to support the design and maintenance of IT systems that support the risk assessments and audit work performed by OAI audit teams, to manage and maintain audit-related software in use by OAI and, on occasions, to assist the Investigations Section of OAI in IT forensic services.
- As member of an audit team and under the supervision of the team leader, prepares/participates in the preparation of risk-based audit plans/programmes focusing on IT systems and controls.
- Prepares working papers for review by the audit team leader.
- Drafts specific parts focusing on IT-related areas of audit reports for review by the team leader.
- Monitors the implementation of agreed recommendations and advises on problem areas.
- As member of an audit team, conducts specific elements of the assignment focusing on IT systems and controls in accordance with the International Standards for Internal Auditing and OAI policies and standard operating procedures.
- Assesses the adequacy and effectiveness of IT systems, controls and risk management.
- Assesses the adequacy and effectiveness of internal controls, including controls regarding the IT-environment such as system processing controls, data security, physical security, contingency planning, system development procedures and system requirements, and unit compliance with procedures and values.
- Documents IT-related findings and communicates orally and/or in writing to the business units on their compliance, performance and potential for improvement
- Recommends actions to address shortcomings identified, strengthen internal controls and improve business processes.
- Maintains good relationship with central units in charge of IT services and, as the need arises, provides input and advice on UNDP initiatives in IT-related systems and controls.
- Supports OAI management and staff on IT audit matters. This would include (a) guidance on UNDP IT policies, systems, and controls; (b) developing and/or running automated analytical scripts, tests and analytical reports; and (c) supporting / advising with regard to data analytics.
- Assists in administration and maintenance of in-house built audit applications. This includes a SharePoint-based electronic audit working paper system and an application for following up on audit reports and recommendations.
- Under the overall supervision of the Chief (P5), conducts special assignments including management reviews, consulting assignments, special audits, and training workshops.
- Undertakes occasional missions to UNDP offices away from Headquarters, including to areas with hazardous working conditions.
- Contributes to the ongoing development of professional practices within OAI.
- Participates in the implementation of his/her personal learning and training development plan.
- Proposes IT solutions that improve the efficiency and effectiveness of audit activities in OAI.
- Performs other assignments or tasks as determined by the Chief (P5), Deputy Director, Audit, OAI or Director, OAI.
- IT audits
- Special audits
- Advisory services
Demonstrates ability to use and apply the following systems / tools / techniques:
- Windows operating system, Microsoft Office365 suite and Azure data platform.
- Standard Query Language (SQL).
- Enterprise Resource Planning systems (preferably Oracle PeopleSoft and/or Oracle).
- Microsoft SharePoint.
- Computer assisted audit techniques (e.g. ACL(Galvanize), Teammate, or IDEA).
- Basic financial accounting.
- Electronic working paper software. Development and programming of queries/scripts using various data analytics software and visualization tools (e.g. SQL, Python, Power BI, etc.).
- Social media channels analysis.
Required Skills and Experience
- Advanced university degree in Computer Science, Accounting, Audit, Business Administration, Public Administration, Finance, or related field.
- Certified Information Systems Auditor (CISA) designation.
- A first level degree in combination with a certification as Chartered Accountant or Certified Public Accountant may be accepted in lieu of an advanced degree.
- Additional professional certifications in IT systems and software (CISSP, ISO 27001 Lead Auditor, ISMS or equivalent) are an advantage.
- Certified Internal Auditor (CIA) designation desirable.
- A minimum of 5 years of professional experience in Information Technology (IT), several of which in IT audit, IT security or IT controls.
- Working experience in UNDP IT corporate systems is highly desirable, this includes Oracle PeopleSoft, Microsoft SharePoint, and Microsoft Office 365.
- Working experience in an International Organization is desirable.
- Familiarity with accounting is an advantage.
- Knowledge and experience in development and programming of queries / scripts using various data analytics software and visualization tool (e.g. SQL, Python, Power Bi, etc.) is an advantage.
- Fluency in English.
- Knowledge of other UN official languages is an advantage.
Under US immigration law, acceptance of a staff position with UNDP, an international organization, may have significant implications for US Permanent Residents. UNDP advises applicants for all professional level posts that they must relinquish their US Permanent Resident status and accept a G-4 visa, or have submitted a valid application for US citizenship prior to commencement of employment. For more information please click here and here.
UNDP is not in a position to provide advice or assistance on applying for US citizenship and therefore applicants are advised to seek the advice of competent immigration lawyers regarding any applications.
Applicant information about UNDP rosters
Note: UNDP reserves the right to select one or more candidates from this vacancy announcement. We may also retain applications and consider candidates applying to this post for other similar positions with UNDP at the same grade level and with similar job description, experience and educational requirements.
UNDP is committed to achieving diversity within its workforce, and encourages all qualified applicants, irrespective of gender, nationality, disabilities, sexual orientation, culture, religious and ethnic backgrounds to apply. All applications will be treated in the strictest confidence.
The United Nations does not charge any application, processing, training, interviewing, testing or other fee in connection with the application or recruitment process. Should you receive a solicitation for the payment of a fee, please disregard it. Furthermore, please note that emblems, logos, names and addresses are easily copied and reproduced. Therefore, you are advised to apply particular care when submitting personal information on the web.