Purpose:
Provide direction to Group Assurance & Advisory Services Division - Information Systems Audit function to conduct an independent appraisal of the Company processes for the purpose of evaluating the adequacy and effectiveness of the systems of internal controls, risk management, governance process.
Assist Senior Manager Assurance and Advisory Services in carrying out assigned responsibilities with regard to SriLankan Airlines Audit Committee on Information Technology(IT)/ Information Systems(IS) related matters.
Key responsibilities will include;
-
Develop Information Systems annual audit plan based on risk assessment and input from the Audit Committee and the Management to identify and prioritize engagements and resource requirements for the year to ensure the work is carried out efficiently and effectively whilst adhering to Divisional Policies and Procedures.
-
Direct, monitor and manage the implementation of the Information Systems audit plan to ensure proper internal controls are in place and working efficiently and effectively.
-
Report Information Technology(IT)/ Information Systems(IS) audit findings and recommendations to SriLankan Airlines Audit Committee and Senior Management on the management of business risks internal controls, corporate governance etc.
-
Direct and guide staff to follow-up on engagement recommendations to ensure that appropriate actions are taken on agreed recommendations by the action owners.
-
Prepare/Review and submit Audit Committee papers to Senior Manager Group Assurance & Advisory Services for the submission to the Board Audit Committee.
-
Monitor progress of key Corporate Information Technology(IT) projects to ensure compliance with corporate information security/ governance requirement & provide advisory feedback where necessary. Perform special reviews/special projects assigned by the Senior Manager Group Assurance & Advisory Services.
Carry out research activities and benchmark reviews in identified areas to understand industry best practices at the request of Senior Manager Group Assurance & Advisory Services.
-
Conduct regular discussions with Information Technology(IT) Departmental Managers and guide/assist on Information Technology(IT)/ Information Systems(IS) controls system, Information Technology(IT) Risk Management, Information Technology(IT) Governance. Stay updated with changes in Information Technology(IT) International Organization for Standardization(ISO) Standards, industry best practices and emerging Information Technology(IT) risks.
-
Analyze, identify and implement changes to enhance and digitalise the engagement management process to improve effectiveness and efficiency of work processes. Collaborate with Information Technology(IT) Division to improve system functionality, and effective utilization of technology within Group Assurance & Advisory Services Division. Guide and assist non-IS assignment process Information Technology (IT)/ Information Systems(IS) matters, review Information Technology(IT) Compliance dashboard and ensure risks pertaining to the current Information Technology(IT)/ Information Systems(IS) environment have been adequately identified and addressed.
-
Guide and motivate direct reports to achieve professional development and ensure adherence to department standards.
Carry out timely performance management of staff in assessing their performance and identifying training and development needs leading towards enhanced performance of the individuals resulting in increased organizational productivity and ensuring industrial harmony.
Requirements
-
Completed Certified Information Systems Auditor (CISA) /Certified information System Management (CISM) with 6 years overall work experience with 3 years at Managerial level and 3 years at Executive level work experience in Information Technology(IT)/ Information Systems(IS) audit and/or assurance services.
Or
-
Bachelors Degree in Engineering/ Information Technology(IT)/ Information Systems(IS) streams with 6 years overall work experience with 3 years at Managerial level and 3 years at Executive level work experience in Information Technology(IT)/ Information Systems(IS) audit and/or assurance services.
Age to be not more than 45 years as at 13th July 2026 which is the closing date.
Be a Sri Lankan Citizen.
Influencing will be a reflection of unsuitability.
We are an equal opportunity Organization.
Please note that we will correspond with you within a month of
closing the advertisement in the event your application is shortlisted
for consideration.