Technology, Data and Cyber Audit Director

ROLE OVERVIEW

Enhance the effectiveness and efficiency of NIA to provide technology enabled independent assurance across NEOM’s technology, data, cyber and information security landscape. Accelerate the independent oversight on key risks and associated controls to match NEOM’s ambition and exponential growth.

REQUIREMENTS SUMMARY

Management and Oversight of TDC Audit Function

• Lead the annual TDC audit universe assessment, determine the auditable entities, and drive the delivery of the annual TDC audit plan.
• Support the delivery of the TDC elements of integrated audits in the wider NIA audit plan.
• Ensure appropriate ownership of TDC outputs & reporting, ensuring delivery on time and to budget.
• Embed TDC driven data analytics across the lifecycle for audits, covering planning, execution, and reporting activities to create deep data driven insights for stakeholders and a strong learning experience for all of NIA.
• Pioneer TDC delivery of technology and data driven audit solutions that NIA can use to drive a collaborative culture across the Lines of Defense (LoDs), foster value adding behaviors, ensure early adoption of emerging technologies and provide unique insights to key stakeholders.
• Share insight on NIA TDC technical expertise with NEOM GRC team and wider PIF (and giga-projects) to facilitate collaborative learning for collective support and acceleration of digitization.
• Leverage and integrate technology solutions employed by the 1st & 2nd line functions to drive a dynamic & holistic compliance assurance eco-system across the NEOM enterprise.
• Develop and oversee robust NIA Data Security/Privacy guidelines and monitoring to ensure secure use of data by NIA staff and co-source partners for the purposes it was requested.
• Demonstrate strategic understanding of organizational context through thorough understanding of internal and external issues that can impact the organization and its objectives.

Ownership and Drive

• Develop and drive relationships with key stakeholders, as a trusted risk advisor for TDC across the NEOM enterprise, including central IT function, the CISO office, and CIOs for key sectors.
• Ensure that NIA Executive are kept abreast of significant TDC centric audit issues as and when they arise, and that audit findings and next steps are agreed with stakeholders before further circulation.
• Lead development of best-in-class internal tactical solutions to support NIA in efficient and effective risk universe assessments, audit risk assessments and questionnaires, delivery of NIA audit plan, electronic working papers and to provide operational insights to the NIA leadership.
• Pursue a digitization agenda of automation data analytics, and utilization of emerging technologies such as AI across NIA.
• Support CIAO in leadership of NIA and provide thought leadership on digitization agenda.
• Play a key leadership role in ensuring that TDC and wider NIA team perform effectively, achieving a culture where colleagues are motivated, developed, and empowered.
• Ensure that the TDC team can demonstrate understanding of auditee perspectives, to “stand in their shoes” and be more aware of the challenges stakeholders face and demonstrate empathy and a pragmatic approach to how we deliver our audits.
• Exemplify a wide range of hard and soft skills, including but not limited to high attention to detail, technology, financial and business acumen, and immense integrity.
• Ensure effective investigation and thorough understanding of audit finding root causes, and their subsequent use as the basis for determining remediation activities and assessing effectiveness.

Working at NEOM Pace

• Drive efficient and effective delivery of TDC services and support activities at pace, and the production of outputs when confronted by obstacles, delays, competing priorities, and tight deadlines.
• Keep teams, partners, and stakeholders focused on delivery requirements, managing expectations, removing blockers, and delivering on time and to expected quality.
• Ensure effective monitoring and management of timelines, milestones, and quality of audit deliverables with clear escalation criteria and processes.

Departmental Leadership

• Support the CIAO and AC to ensure that NIA achieves its vision to be a world-class audit function which operates efficiently and effectively.
• Actively develop and protect the reputation of TDC and NIA, creating a sense of pride and passion for services delivered.
• Maintain and enhance the capability of TDC in supporting NIA to achieve its vision and objectives.
• Support NIA corporate leadership through membership of the NIA Executive Team, and the provision of TDC direction, performance guidance, and leadership of NIA team members.
• Role model NEOM Values demonstrating effective leadership to all, acting in ways that are highly visible, inspirational, and credible at the most senior levels across and outside of NIA.

Audit Technology and Digital Skills

• Extensive experience in auditing: cyber security, data privacy, IT strategy, OT/IOT, SAP and supporting infrastructure, change management, business resilience, cloud-based infrastructure, 3rd party providers, AI, asset management, large capital projects and technology enabled change programs.
• Collaborative engagement with NIA co-Directors and Executive to upskill teams to become familiar in audit-centric technology and digital solutions, and to drive efficiency and insight in the delivery of integrated audits.
• Demonstrate awareness and appropriate application of existing and emerging digital technologies, capabilities, practices, and strategies, and ensure possession of relevant digital skills across the function.
• Ensure that all NIA team members can demonstrate appropriate and relevant technical skills, ethics, and abilities to perform to defined standards consistently, while maintaining the highest standards of integrity, independence, and skepticism.
• Demonstrate functional vision and the ability to anticipate future trends accurately using foresight and encourage the expansion of professional knowledge through innovative thinking.

Promote Corporate Governance

• Ensure that appropriate TDC governance is in place and is effective in promoting good standards of propriety, stewardship, risk management and accountability.
• Support assurance champions across NEOM so that robust internal controls and awareness of good corporate governance practices are embedded.
• Work with management in IT, CISO and GRC teams to assess and develop continuous mitigation plans for AI, Cyber and technology etc.
• Ensure TDC participation in broader risk management activities and workshops so that assurance services across the second and third lines of defense are integrated and coordinated.

Culture and Values

• Embrace NEOM’s culture and Values https://www.neom.com/en-us/about.
• Act with honesty and integrity by following best practices, and upholding the robust standards and expectations set out in NEOM’s Code of Conduct.
• Maintain fair, ethical and professional work practices in accordance with NEOM’s Values and Code of Conduct.
• Adhere to NEOM’s Policies, procedures, and controls to ensure compliance with rules.

EXPERIENCE & QUALIFICATIONS

Knowledge, Skills and Experience

• +15 years post qualification experience in global multicultural organizations
• Strong leadership and communication skills
• Excellent stakeholder management skills and ability to build professional relationships across a diverse organisation
• Experience of large global business and ideally smaller developing business
• Extensive audit experience across a diverse portfolio
• Deep risk understanding of Technology, Cyber, Industrial Technologies, Data Analytics and AI
• Excellent knowledge of auditing standards, methodologies, and Audit Quality frameworks
• Strong coaching and development of KSA Talent
• Data Analytics and how these can be applied for effective resolution of business challenges

Qualifications

• Graduate Degree or Master’s Degree in a relevant subject
• Professional qualification in Internal Audit, Technology, Cybersecurity required