Audit Manager – IT at Hollard Insurance

Job Advert Summary    

• The Audit Manager: Digital & Cyber will play a key role in all phases of audit and advisory engagements and will interact with senior and middle management across the organisation. This role involves leading and executing audits, managing complex projects, conducting research, and delivering data-driven insights.
• Responsibilities include proactively identifying and evaluating risks across strategic, operational, compliance, reporting, and internal control domains, with a strong emphasis on those emerging from digital transformation, cyber threats, data governance, cloud computing, AI, and evolving IT architectures. The Audit Manager will collaborate closely with stakeholders across IT, Risk, Compliance, and Business Units to ensure effective risk mitigation and governance.
• This role also contributes to the development and execution of the Internal Audit plan, ensuring alignment with the audit methodology. The Audit Manager is expected to drive innovation in audit practices, mentor junior team members, and support continuous improvement in audit quality and relevance.

Key Objectives

Strategy and Planning:

• In conjunction with the Senior Audit Manager, set the internal audit strategy and audit plan and oversee the implementation thereof.
• Deliver on the internal audit strategic objectives by developing deeper perspectives and options for how to best serve our clients, solve problems, being proactive about suggesting meaningful improvements, leveraging subject matter expertise and considering broader organisational implications in terms of risk assurance.
• Continuously drive internal audit process improvement to enhance value delivery and strengthen partnerships with business stakeholders.

Operational / Technical:

• Assist in developing the annual audit and advisory plan as well as determining resource needs.
• Manages overall audit and advisory engagements to ensure the timely delivery of the highest quality work, reports and value-add recommendations.
• Develops a thorough and comprehensive understanding of the overarching risk universe, processes and associated internal controls, issues, pertinent regulations and risks associated with the engagement scope.
• Assesses the design adequacy and effectiveness of the control environment, identifies control gaps and opportunities for continuous improvement and relates it divisionally and enterprise-wide, as appropriate.
• Performs audit work and analysis on complex audit areas.
• Provides draft opinions on audit and advisory findings, ratings and recommendations to senior Internal Audit management.
• Engages and influences business management to act on recommendations to strengthen the control environment and make process improvements.
• Serves as trusted advisor and consultant to the department and business leaders to share knowledge and perspective on topics related to governance, risk, control and areas of expertise.
• Remains up to date with industry trends, emerging technologies, and regulatory developments impacting digital and cyber risk.

Stakeholder Engagement:

• Effectively build and maintain business relationships with all internal and external stakeholders, to become a credible and trusted advisor and business partner.
• Represent the Internal Audit function professionally and effectively in all interactions.
• Maintain a deep understanding of the business environment, strategic priorities, risks and challenges as well as prevailing legislation and emerging industry trends.
• Effectively collaborate with second-line functions to support a coordinated and efficient combined assurance approach and avoid duplication of efforts.

Management and Leadership:

• Provide direction and leadership to the engagement team in executing the Group’s internal audit strategy.
• Build a high performance team through managing resources, coaching, mentoring, retention of critical staff, and talent development.
• Promote continuous learning and professional growth within the team.

Financial Management:

• Responsible for effective budget management and control within area of responsibility and projects.
• Ensure cost effectiveness and optimisation for own area of responsibility.

Required Knowledge and Experience    
Required Experience

• Minimum of 5 – 6 years relevant experience in IT Audit of which 2 years are in a management/leader role, with a strong focus on digital technologies, infrastructure, and IT architecture.
• Proven experience in leading and managing high-performing teams.
• Strong track record of building and maintaining effective stakeholder relationships.
• Ability to manage and deliver complex projects within scope, time, and budget.

Knowledge

• Information Technology, digital and cyber domains, with knowledge of emerging technologies such as artificial intelligence (AI), cloud computing and data governance.
• Insurance/Financial services knowledge and experience
• Deep knowledge of the business environment and value-chain
• Knowledge of Finance, Governance, Compliance and Risk Management principles
• Internal audit methodology and best practice
• IA Charter, Standards and Code of Ethics
• Knowledge of COBIT and / or ITIL frameworks
• Knowledge of COSO framework
• Knowledge of risk management and risk management practices
• Intermediate Excel
• Intermediate Linux

Technical Knowledge:

• IT General Controls (ITGCs)
• IT Infrastructure and architecture (advanced)
• Cloud computing environments (intermediate)
• Artificial Intelligence (AI) and Machine Learning (ML)
• Vulnerability management (advanced)
• Computer networks (advanced)
• Server administration (advanced)
• Database structures (intermediate)

Educational Requirements    
Required Qualifications

• Relevant BSc degree as a minimum, as well as one or more of the following:
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)
• Offensive Security Certified Professional (OSCP)
• Certified Ethical Hacker (CEH)
• Certified Internal Auditor (CIA) / Professional Internal Auditor (PIA)
• Certification in Risk Management Assurance (CRMA)
• Certified in Risk and Information Systems Control (CRISC)
• Any other IT certifications related to software development or information security (ISO27001, PCI-DSS etc.)

Deadline:30th October,2025