IS Audit & Compliance Analyst
Aberdeen City, Aberdeen, United Kingdom
Job type: fulltime
Job industry: Mining / Oil / Gas
Responsible for the audit, compliance and assurance function and ensuring security or regulatory risks are reduced to an acceptable level.
The role is accountable for the continued adherence to the IS control framework (ISCF), providing audit, compliance and assurance to the IS function.
Provide direction & development of the IS audit, assurance and compliance function
Design, lead and manage the strategic and operational vision of the IS Control framework ensuring the successful delivery of business strategy and objectives, whilst adhering to regulatory compliance and achieving commercial success (e.g. financial controls).
To manage and assist in the development of policies, processes & procedures to ensure secure and safe IS operations which align to core business functions such as finance.
To manage and ensure that the ISCF, processes and procedures are implemented and ensure that business processes are fit for use and are compliant with appropriate regulatory commitments without any undue overhead (leaned and automated where possible).
Liaising with internal and external audit functions which provide specialised reviews to help ensure that the highest control deficiency risks are identified and controlled efficiently and effectively.
Ensuring that the audit tests, self-certifications and audit reviews are relevant, consistent and conducted in accordance with professionally accepted auditing standards.
Own, develop and implement the business impact assessment process and ensure full alignment to the IS BIA and DR capabilities.
Test processes and controls according to the operation procedures in order to assess the design, adequacy and effectiveness of processes and controls deployed in order to meet regulatory compliance.
Identify and document control failings, process and system improvements, and the effectiveness of the business controls, agreeing action plans to remediate when necessary.
Collaborate with internal and external stakeholders, service providers, senior management, the board and approved persons as appropriate.
The ability to share specialised knowledge with others to aid their understanding and decision making in relation to ISCF.
Taking responsibility for the quality control of the IS audits and the delivery of reports.
Ensuring that management responses to audits are completed promptly and that follow-up actions are completed according the agree timetable. Reporting results of reviews and other risk management actions concisely to senior management and the Audit Committee.
Working closely with the operational audit teams and the external auditors to ensure that tools, techniques and reporting are aligned and coordinated.
Maximising the use of technology to make sure that audits and other risk management actions are conducted and controlled effectively and efficiently.
Providing ad hoc advisory risk, control and investigative services to operational management as required.
CISM, CISA preferred
Audit Experience (including any qualifications/certifications)
Computing Science degree, B.Sc. or M.Sc. or comparable education or documented relevant experience of working in similar role for a production & operations facing IS organisation
Previous IS oil and gas experience
With over 90 years' combined experience, NES Fircroft (NES) is proud to be the world's leading engineering staffing provider spanning the Oil & Gas, Power & Renewables, Infrastructure, Life Sciences, Mining, Automotive and Chemicals sectors worldwide.With more than 100 offices in 45 countries, we are able to provide our clients with the engineering and technical expertise they need, wherever and whenever it is needed. We offer contractors far more than a traditional recruitment service, supporting with everything from securing visas and work permits, to providing market-leading benefits packages and accommodation, ensuring they are safely and compliantly able to support our clients.