Grade VIII IT Audit-Internal Audit

Job Specification, Terms & Conditions

Job Title / Grade VIII IT Audit - Internal Audit
(Grade Code 0655)
Campaign Reference / NRS1212
Closing Date / 12 Noon, Thursday, 18th September 2014
Reporting Relationship / Assistant National Director of Internal Audit – IT Audit.
Working Relationship: To work collaboratively with colleagues in Internal Audit and senior management of HSE administrative areas.
In certain circumstances joint audit teams with the Operations Audit and Special Projects & Investigations Departments will be utilised in the carrying out of specific audits and investigations as directed.
Objectives of the Post / To assist the AND IT Audit to achieve the annual Internal IT Audit plan.
To provide specialist advice to Internal Audit staff in other parts of the Audit Division and to HSE Management regarding IT Audit and IT Governance, Risk and Compliance.
Responsibility for the development of audit staff with the particular specialist skills required to conduct IT Audits.
Responsibility for the development and implementation of uniform audit systems and processes including operational and reporting methodologies.
Purpose of the Post / The role of the Grade VIII is:
  • To manageand conduct Internal IT Audits as directed by the AND IT Audit;
  • To oversee specialist audit work carried out by external IT Audit Contractors procured and appointed by the Internal Audit Division;
  • To support the work of the AND ICT Internal Audit Division.

Location of Post / At existing Internal Audit Locations. (Internal Audit Offices in Cork,Dublin, Galway, Kells, Kilkenny, Limerick, Sligo & Tullamore)
The successful candidate will be required to travel outside their base to locations throughout the HSE on a regular basis.
Organisational Area / Internal Audit Division.
Principal Duties and Responsibilities / The principal duties and responsibilities will, inter-alia, be:
  • To carry out such IT Audits as directed by the AND IT Audit.
  • To oversee and support the work of specialist external IT Audit Contractors.
  • To plan and undertake in conjunction with the Special Projects and Investigations Department, data mining and other investigative work designed to identify possible fraud or irregularity.
  • To provide training and technical assistance to other staff in the Audit Division in the area IT Audit.
  • To monitor the achievement of the unit’s outputs and outcomes, as set out in the annual plan and to report in a regular and timely manner.
  • To be responsible for the production and maintenance of management information for the Unit so that the Unit’s outputs and outcomes, as set out in the annual plan can be effectively monitored in a regular and timely manner.
  • To implement standard systems and processes within the unit.
  • To implement processes and procedures for the effective discharge of the unit’s day to day operations including compliance with HSE National Financial Regulations.
  • To develop risk based strategic and operational plans for the unit.
  • To motivate and manage the performance of staff.
  • To plan, allocate and review the work carried out by staff, ensuring that adequate testing is carried out, and that reliable evidence is obtained to support findings and conclusions.
  • To ensure that the execution and reporting of all assignments is in accordance with agreed plans, time budgets and deadlines.
  • To ensure that working paper files for each assignment are clear, logical, and adequately documented.
  • To ensure that all reports are comprehensive, clear, concise and accurate.
  • To discuss and agree report findings, conclusions and recommendations with management where appropriate, including the preparation of an agreed management action plan which incorporates timelines for completion of recommendations.
  • To follow up on the implementation of agreed recommendations where appropriate.
  • To prepare material for releasing under FOI legislation and to act as Decision Maker in the absence of the Assistant National Director.
  • To attend meetings of the Audit Committee and any other committees as required.
  • To liaise with the Office of the Comptroller and Auditor General as required.
  • To develop and maintain positive working relationships with key stakeholders both internal and external.
  • To promote and participate in the implementation of change.
  • To participate and lead project working groups.
  • To represent Internal Audit on committees and groups as required.
  • To carry out any other appropriate duties or assignments as requested by senior Internal Audit management.
  • To manage the budget of the Unit.
  • To deputise for the Assistant National Director IT Audit.
The above Job Description is not intended to be a comprehensive list of all duties involved and consequently, the post holder may be required to perform other duties as appropriate to the post which may be assigned to him/her from time to time and to contribute to the development of the post while in office.
Eligibility Criteria / Candidates will possess by the closing date of application:
(i) Professional IT Audit Qualification (see list below*)
or
Holder of MIIA Qualification as awarded by the Institute of Internal Auditors
and
(ii) Admitted to membership of a professional IT Security/Audit Association or IIA
and
(iii) Significant experience in IT Audit or an IT Security Functionincluding experience of managing an IT Audit or IT Function
*IT Audit qualifications:
  • Certified Information Systems Auditor (CISA) Information Systems Audit and Control Association (ISACA)
  • Certified Information Systems Manger (CISM) Information Systems Audit and Control Association (ISACA)
  • CGEIT or CRISC
  • CISSP (Information Systems Security Certification Consortium);
  • QiCA (Institute of Internal Auditors UKIreland).
Health
A candidate for and any person holding the office must be fully competent and capable of undertaking the duties attached to the office and be in a state of health such as would indicate a reasonable prospect of ability to render regular and efficient service.
Character
Each candidate for and any person holding the office must be of good character.
Age
Age restrictions shall only apply to a candidate where he/she is not classified as a new entrant (within the meaning of the Public Service Superannuation Act, 2004). A candidate who is not classified as a new entrant must be under 65 years of age on the first day of the month in which the latest date for receiving completed application forms for the office occurs.
Essential Skills,
Competencies and / or knowledge / Candidates will demonstrate the following:
  • Understands, identifies with and is committed to the core values of the HSE and places a high emphasis on achieving high standards of excellence.
  • Ability to plan and organise own work and that of others, delegating appropriately within resources available.
  • Ability to set and manage deadlines and report on same and effectively handle multiple tasks
  • Demonstrates good problem solving, numerical, analytical and decision making skills
  • Excellent judgement skills.
  • Is a team player and provides leadership and vision for the team
  • Ability to build and maintain relationships
  • Demonstrates good change management skills
  • Demonstrates initiative and innovation, identifying areas for improvement, implementing and managing change
  • Commitment to achieving quality results
  • High level of communication and interpersonal skills and the ability to present information in a concise and clear manner including excellent report writing skills.
  • Strong influencing and negotiating skills
  • Demonstrates tact and diplomacy skills
  • Can communicate ideas, positions and information clearly and convincingly
  • Demonstrates a commitment to continuing professional development & training
  • Demonstrates understanding of best practice in IT Audit.
  • Maintains confidentiality

Campaign Specific Selection Process
Shortlisting / Interview / This is a staged recruitment campaign (see “Additional Campaign Information” for
further details) which will include:
Stage 2 of the selection process will involve online testing.
Stage 3 - Short listing may be carried out on the basis of information supplied in
our application form. The criteria for short listing are based on the requirements of
he post as outlined in the eligibility criteria and skills, competencies and/or
knowledge section of this job specification. Therefore it is very important that you
think about your experience in light of those requirements. Failure to include
information regarding these requirements may result in you not being called forward
to the next stage of the selection process.
Those successful at the short listing stage of this process (where applied) will be
called forward to interview.
Code of Practice / The HSE will run this campaign in compliance with the Code of Practice prepared by
the Commissioners for Public Service Appointments (CPSA). The Code of Practice
sets out how the core principles of probity, merit, equity and fairness might be
applied on a principle basis. The Code also specifies the responsibilities placed on
candidates, feedback facilitates for applicants on matters relating to their application
when requested, and outlines procedures in relation to requests for a review of the
recruitment and selection process and review in relation to allegations of a breach of
the Code of Practice. Additional information on the HSE’s review process is
available in the document posted with each vacancy entitled “Code of Practice,
Information For Candidates”.
Codes of Practice are published by the CPSA and are available on in the
document posted with each vacancy entitled “Code of Practice, information for
candidates or on

HEALTH SERVICES EXECUTIVE

Terms and Conditions of Employment

Grade VIII

Tenure / The current vacancies are whole time and permanent.
A panel will be created from this campaign from which current and future permanent, specified purpose, whole-time and part time posts will be filled. The tenure of these posts will be indicated at “expression of interest” stage. The posts are pensionable.
Appointment as an employee of the Health Service Executive is governed by the Health Act 2004 and the Public Service Management (Recruitment and Appointment) Act 2004.
Remuneration / The Salary scale for the post is: €64,812 - €78,889 (7 point scale as at 01/07/2013)
Working Week / The standard working week applying to the post is:37 hours
HSE Circular 003-2009 “Matching Working Patterns to Service Needs (Extended Working Day / Week Arrangements); Framework for Implementation of Clause 30.4 of Towards 2016” applies. Under the terms of this circular, all new entrants and staff appointed to promotional posts from Dec 16th 2008 will be required to work agreed roster / on call arrangements as advised by their line manager. Contracted hours of work are liable to change between the hours of 8am-8pm over seven days to meet the requirements for extended day services in accordance with the terms of the Framework Agreement (Implementation of Clause 30.4 of Towards 2016).
Annual Leave / The annual leave associated with the post will be in line with HSE annual leave entitlements and will be outlined at job offer stage.
Superannuation / All pensionable staff become members of the pension scheme.
Applicants for posts in the Mental Health service are advised that Section 65 of the Mental Treatment Act, 1945, does not apply to new entrants to the Mental Health Services as defined by the Public Service Superannuation(Miscellaneous Provisions) Act, 2004 (Section 12 of that Act) New entrants
Probation / Every appointment of a person who is not already a permanent officer of the Health Service Executive or of a Local Authority shall be subject to a probationary period of 12 months as stipulated in the Department of Health Circular No.10/71.
Ethics in Public Office 1995 and 2001
Positions remunerated at or above the minimum point of the Grade VIII salary / Positions remunerated at or above the minimum point of the Grade VIII salary scale are designated positions under Section 18 of the Ethics in Public Office Act 1995. Any person appointed to a designated position must comply with the requirements of the Ethics in Public Office Acts 1995 and 2001 as outlined below;
A) In accordance with Section 18 of the Ethics in Public Office Act 1995, a person holding such a post is required to prepare and furnish an annual statement of any interests which could materially influence the performance of the official functions of the post. This annual statement of interest should be submitted to the Chief Executive Officer not later than 31st January in the following year.
B) In addition to the annual statement, a person holding such a post is required, whenever they are performing a function as an employee of the HSE and have actual knowledge, or a connected person, has a material interest in a matter to which the function relates, provide at the time a statement of the facts of that interest. A person holding such a post should provide such statement to the Chief Executive Officer. The function in question cannot be performed unless there are compelling reasons to do so and, if this is the case, those compelling reasons must be stated in writing and must be provided to the Chief Executive Officer.
C) A person holding such a post is required under the Ethics in Public Office Acts 1995 and 2001 to act in accordance with any guidelines or advice published or given by the Standards in Public Office Commission. Guidelines for public servants on compliance with the provisions of the Ethics in Public Office Acts 1995 and 2001 are available on the Standards Commission’s website

Job description – Health Service Executive – Grade VIII IT Audit (Internal Audit)

Page 1 of 6