Background
The Office of Audit and Investigations (OAI) reports to the Administrator and is responsible for internal audit and investigations services to UNDP and its affiliated entities. OAI provides independent, objective assurance on the effectiveness of risk management and the effectiveness and adequacy of internal controls. As part of its assurance work, OAI also supports the annual audit exercise of non-governmental/nationally implemented projects (HACT/NIM projects) in some 150 countries where UNDP operates.ย
OAI has a decentralized organizational structure with the Directorate, the Investigations Section, the ICT Audit Section (ICTAS), the Headquarters Audit Section and other units located at Headquarters and Regional Audit Centres located in the five regions covered by UNDP (Kuala Lumpur/Malaysia, Pretoria/South Africa, Dakar/Senegal, Panama City/Panama and Istanbul/Turkey).ย UNDP increasingly relies on information technology and systems (IT) to conduct its business.ย In response to the increasing mission critical nature of IT to the organization, OAI is strengthening its IT audit capacity.ย
ICTAS is staffed with a Chief (P-5 level), and three Audit Specialists (P-4 and P-3 levels). The workforce is at times supplemented with contract IT experts.ย
Position Purposeย
The IT Audit Specialist reports to the Chief ICTAS (P5).ย The primary role of the IT Audit Specialist is to perform comprehensive information systems audits of corporate IT systems, to provide IT audit support to audit teams in OAI, to design and maintain IT systems that support the risk assessments and audit work performed by OAI audit teams, and, on occasions, to assist the Investigations Section of OAI in IT forensic services. At times, the IT Audit Specialist may be required to undertake audit assignments in areas with hardship or hazardous working conditions.ย
The ICT Audit Section (ICTAS) covers corporate ICT portfolio.ย The primary role of the IT Audit Specialist is to perform internal audits of ICT systems and to lead in the development of audit tools used by auditors and investigators.ย
UNDP adopts a portfolio approach to accommodate changing business needs and leverage linkages across interventions to achieve its strategic goals. Therefore, UNDP personnel are expected to work across units, functions, teams, and projects in multidisciplinary teams to enhance and enable horizontal collaboration.ย
Key Duties and Responsibilities
Ensure Effective General Managementย ย
Leads the development and maintenance of audit tools including dash boards, artificial intelligence and machine language tools used by auditors and investigators. As a team leader, assumes responsibility and accountability for achieving the objectives of IT audits. This involves:ย preparation of risk-based audit plans/programmes focusing on IT systems and controls conduct of audit field work preparation and review of working papers preparation of exit meeting notes preparation of draft audit reports, incorporating input from other team membersAssesses the team membersโ performance in a participatory manner and documents lessons learnedย Provides direction and guidance to, and coaches team members ensuring effective team functioning.ย Presents audit results to management.ย Monitors the status of audit recommendations and appraises adequacy of action taken on audit recommendations.ย Manages and supervises the services of IT experts occasionally hired by OAI to assist in audits or investigations.ย Contributes to the development of the ICTAS workplan following a comprehensive risk assessment.ย Acts as OIC for the ICT Audit Section when necessary.ยProvision of Effective Client Servicesย
Under the overall supervision of the Chief (P5), design and maintain IT systems that support the risk assessment and audit work performed by audit teams in OAI. As a team leader or as a member of an audit team, conducts specific elements of the assignment focusing on IT systems and controls in accordance with the International Standards for Internal Auditing and OAI policies and standard operating procedures. Assesses the adequacy and effectiveness of IT systems, IT controls and risk management.ย Documents IT-related findings and communicates orally and/or in writing to the business units on their compliance, performance and potential for improvement. Recommends actions to address shortcomings identified, strengthen internal controls and improve business processes. Under the overall supervision of the Chief (P5), conducts special assignments including management reviews, consulting assignments, special audits, and training workshops. Undertakes occasional missions to UNDP offices away from Headquarters, including to areas with hazardous working conditions.ยPerform other activities as required by the Chief or OAI Director /Deputy Director and facilitate knowledge managementย
Contributes to the ongoing development of professional practices within OAI.ย Participates in the implementation of his/her personal learning and training development plan. Proposes IT solutions that improve the efficiency and effectiveness of audit activities in OAI. Performs other assignments or tasks as determined by the Chief (P5) or OAI Director and Deputy Director.ยThe incumbent performs other duties within their functional profile as deemed necessary for the efficient functioning of the Office and the Organization.ย
ย Competencies
Core competencies:
Achieve Resultsย
Set and align challenging, achievable objectives for multiple projects, have lasting impact.Think Innovativelyย
Proactively mitigate potential risks, develop new ideas to solve complex problems.Learn Continuously
Create and act on opportunities to expand horizons, diversify experiences.Adapt with Agility
Proactively initiate and champion change, manage multiple competing demands.Act with Determination
Think beyond immediate task/barriers and take action to achieve greater results.Engage and Partner
Political savvy, navigate complex landscape, champion inter-agency collaboration.Enable Diversity and Inclusion
Appreciate benefits of diverse workforce and champion inclusivity.Cross-Functional & Technical competencies:ย
Business Direction and Strategy: System Thinkingย
Ability to use objective problem analysis and judgement to understand how interrelated elements coexist within an overall process or system, and to consider how altering one element can impact on other parts of the system.ย ยBusiness Direction and Strategy: Negotiation and influenceย
Ability to reach an understanding, persuade others, resolve points of difference, gain advantage in the outcome of dialogue, negotiate mutually acceptable solutions through compromise and creates win-win situations.ยBusiness Management: Portfolio Managementย
Ability to select, prioritize and control the organizationโs programmes and projects, in line with strategic objectives and capacity. Ability to balance the implementation of change initiatives and the maintenance of business-as-usual, while optimizing return on investment.ยAudit & Investigation โ Audit: Internal auditing standards, practices, and techniquesย
Knowledge of key notions and concepts, practices, and methodologies of internal auditing (IPPF and Other IIA Standards, COSO). Undertake audit assignments in accordance with international professional standards in respect of operational audits, financial audits, performance audits, project audits and provision of advisory services.ยAudit & Investigation โ Audit: Critical creative and foresight applied to audit and investigations
Possess essential critical thinking and foresight capacity to analyse facts to form a judgment.ยAudit & Investigation โ Audit: Performance key concepts and techniques
Ability to understand and use various concepts such as efficiency, effectiveness and economy.ยAudit & Investigation โ Audit: Computer Assisted Audit Techniques (CAATs)ย
Proficiency in the use of CAATs (Computer Assisted Audit Tools) such as Electronic working paper software and ACL or IDEA.ยRequired Skills and Experience
Education:
Advanced university degree in Computer Science, Accounting, Audit, Business Administration, Public Administration, Finance, or related field is required. ORย A first-level university degree (bachelorโs degree) in the areas stated above in combination with an additional two years of qualifying experience will be given due consideration in lieu of the advanced university degree.ย Certified Information Systems Auditor (CISA), or CISSP designation is required.ย Professional certifications in IT systems and software (SSCP, ISO 27001 Lead Auditor, ISMS or equivalent) are an advantage.ยย Experience:
A minimum of 7 years (with masterโs degree) or 9 years (with bachelorโs degree) of professional experience in Information Technology (IT), several of which in IT audit, IT security or IT controls. ย Working experience in cloud systems including Oracle Fusion Cloud, Microsoft SharePoint, Microsoft Azure or ServiceNow is required.ย Strong command of Standard Query Language (SQL) is an asset.ย ย Strong command of Power BI is an asset.ย Additional knowledge of Tableau and/or other data visualization tools is an advantage. Additional knowledge of Python and/or R is an advantage. Working experience in an International Organization is desirable.ย Familiarity with accounting is an advantage.ยLanguage:
Fluency in English is required.ย Working knowledge of another UN language is desired.ยEqual opportunity
As an equal opportunity employer, UNDP values diversity as an expression of the multiplicity of nations and cultures where we operate and, as such, we encourage qualified applicants from all backgrounds to apply for roles in the organization. Our employment decisions are based on merit and suitability for the role, without discrimination.ย
UNDP is also committed to creating an inclusive workplace where all personnel are empowered to contribute to our mission, are valued, can thrive, and benefit from career opportunities that are open to all.
Sexual harassment, exploitation, and abuse of authority
UNDP does not tolerate harassment, sexual harassment, exploitation, discrimination and abuse of authority. All selected candidates, therefore, undergo relevant checks and are expected to adhere to the respective standards and principles.ย
Probation
For all new UNDP fixed term appointments (FTA), including for staff members being transferred or seconded to UNDP under the Inter-Organization Agreement concerning Transfer, Secondment or Loan of Staff, on an appointment of more than one year, continuation of the appointment beyond the initial 12 months is contingent upon the successful completion of a probationary period.
Right to select multiple candidates
UNDP reserves the right to select one or more candidates from this vacancy announcement.ย We may also retain applications and consider candidates applying to this post for other similar positions with UNDP at the same grade level and with similar job description, experience and educational requirements.
Scam alert!
UNDP does not charge a fee at any stage of its recruitment process. For further information, please see www.undp.org/scam-alert.
ย