It Risk

Are you our new colleague?

We're looking for a IT risk & audit professional at Randstad Global

Sao Paolo, Brazil, hybrid, fulltime

BR&AF

The business risk and audit function (BR&AF) provides assurance and recommendations to the Executive Board and the Audit Committee on Randstad Group's (risk) management, control and governance practices. Therefore the department facilitates in setting governance standards. It provides advice on internal control improvements, it conducts audits, special investigations and assignments worldwide on request of the Executive Board and Audit Committee. BR&AF's responsibility includes the quarterly reporting based on:
the risk and internal control self assessments, audit results, discussions on internal control weaknesses and analysis of the key risks reported throughout the company's management structure. This also substantiates the Group's in-control statements.

The global function consists of team members operating through hubs spread over 4 continents. The team is organized in a matrix consisting of control & audit focus teams on business and functional areas (e.G. digital, talent, client, back office & shared service centers and fraud & forensics) and partners that are the linking pin to operating units (business risk & audit partners) with a global view. A support group is set up for professional practice, learning & development, quality improvement & methods, analytics and PMO.

Representatives of the different groups (Focus teams, BR&A Partners and support group) form the BR&AF core management team that reports to the Managing Director BR&AF.

how you will contribute

As IT auditor you are part of the, Business Risk & Audit - IT focus team and are going to:

- perform and assist internal audit projects and internal control evaluation related to 'digital' processes, such as general IT processes, IT program & project management, 3rd party assurance, security, business IT (automated) controls, RPA, AI and BCP.
- together with other team members you coordinate, execute and report on the outcomes of risk management, internal control and internal audit in close collaboration with other involved and impacted functions within the group, such as IT and global IT program organizations
- provide coaching & development for your team members with respect to IT general controls, application controls and other technical expertise's required within Risk & Audit.
- support the planning, execution and reporting of the risk, internal control and internal audit activities in your domain to make impact. You know your impact is there when management follows-up on your reports by implementing operational and control improvements.

what you will be doing

- participate in risk assessments and assist in audit planning and scoping, such as:
IT general controls, automated controls, RPA and IT projects.
- perform IT controls/process audits on scope elements.
- lead and execute audits, for technical domains, including:
physical security, ethical hacking and technical validation of controls on multiple OSI layers.
- support combined comfort analyses on maturity of IT general controls relevant domains (combining audit insights with other sources of data such as internal control projects, management controls self-assessment and developments within the company)
- participate and lead audit interviews, accountable to prepare audit workpapers and reporting, as well as assist in drafting audit findings and recommendations for management based on identified control weaknesses or process improvements.
- support and monitor the follow-up implementation of corrective actions by management.
- act as a resource for colleagues with less expertise.

who will you work with

- Partners/communities within the IT operations and projects space
- IT security, data protection, information security and business continuity communities within the Randstad organization.
- Business risk & audit partners
- IT & digital leadership
- External co-source partners
- BR &A F stakeholders/clients within the business including local MT's, process and control owners

what you will bring

Your in depth understanding and experience with general IT management processes, business enabling through it (automated controls, RPA and IA) combined with risk & audit skills are well developed. As a critical challenger to management you strike the right tone. You have a keen interest in enabling an effective balance in managing IT effectively while enabling the business to operate optimally leveraging IT. You have a sharp eye for improvements strengthening management controls structurally in the context of what works best within the company setting and not taking it from a theoretical perspective.

You:

- have minimum 5 to 8 years of relevant experience
- have at minimum a bachelor degree in IT, business or economics.
- are qualified as IT auditor (e.G. CISA, RE or equivalent).

You work and act in a way that:

- creates clarity - showing line of sight (analytical skills):
you collect and analyze data to solve problems, make decisions and advice within your professional boundaries.
- collaborates, reaches out (organizational sensitivity):
maneuvering comfortably through complex policy, process and people-related organizational dynamics recognizing the value that different perspectives and cultures bring to an organization
- ensures the business, thus:
align, improve, execute and promote systems and work processes that support the business in achieving its goals and complies with internal and external standards and regulatory requirements.
- co-drives the business, thus:
provide insights into drivers for value creation and act as business partner in making decisions that enhance performance.
- applies outside- in thinking (curiosity), with:
unrest to push the boundary, eagerness, examination of new possibilities by investigating and asking questions, exploring and/or discovering new possibilities and assuming something better is still out there. You are comfortable leading what isn't understood.

As IT auditor you:

- have a strong independent mindset
- are experienced in international stakeholder management & change
- are an innovative thinker that challenges the status quo

have an agile and flexible working style and passion for on the job coaching and development

Your competences demonstrates you can:

- support the development of an audit universe and audit approaches on IT risks and opportunities, as well as assist in building cyber assurance practices within Randstad.
- prepare audit plannings and scoping on identified (cyber) risks & opportunities.
- lead and execute internal audits/review for operational business processes, with focus on cyber and give guidance and/or instructions to junior staff in audit projects.
- report and communicate audit findings at the right tone to make impact and provide recommendations for improvements.

Your Business English is at level BEC B1/B2 or higher.

As the standard office locations for the BR&AF team are organized in hubs, like in the country mentioned, it is relevant, as part of the job, you are willing to travel. Travelling is estimated to be about 20% to 30% of the job.

your competencies

Within Randstad we defined the following Leadership competencies:

- delighting people:
connect people (client, talent, employee, society), building strong client relationships and delivering client-centric solutions.
- performing today:
resourcefulness securing and developing resources effectively and efficiently.
- leading change:
manages ambiguity operating effectively, even when things are not certain or the way forward is not clear.
- securing the future:
drives vision and purpose painting a compelling picture of the vision and strategy that motivates others into action.
- strategic mindset:
seeing ahead to future possibilities and translating them into breakthrough strategies
- creating clarity - showing line of sight:
making sense of complex, high quantity and sometimes contradictory information to effectively solve problems and provides direction, is delegating and removing obstacles to get work done
- courage to challenge:
shows courage and confidence to speak up skillfully, challenging others even when they are confronted with resistance or unfamiliar circumstances

what's in it for you

We put people at the heart of everything we do. Our employment conditions reflect this and are in accordance with the applicable (local) Randstad employment policies and related personnel guide.

We want our teams and talent to reflect the rich diversity of the societies we serve. We thrive for an environment of belonging, safety and confidence. So everyone can bring their whole selves to work and flourish. Learn more about equity, diversity, inclusion and belonging at randstad here.

If you recognize yourself in the profile above, we invite you to apply for this role. For more information you can reach out to our recruitment business partner:
jennifer.roberts@randstadsourceright.co.uk

---