Description of the Business Line or Department
Inspection and Group Audit Division (IGAD) is the group audit division of the Société Générale Group and as such conducts independent and objective audits reviews of all its activities, aiming at providing the Group with assurance as to how effectively it is controlling its operations, advises on improvements and contributes to the creation of added value. It also assesses the quality of risk management within an audited scope, the appropriateness and effectiveness of the permanent control framework, the risk sensitivity of management and compliance with codes of conduct and expected professional practices. This is in accordance with the Société Générale Code, which includes the mandate and role of the Third Line of Defence.
IGAD issues recommendations to remedy any shortfalls they identify and, more generally, to improve the Group’s operational management and risk control. The Audit teams cover all the risks of the jurisdictions they oversee. General Inspection, besides audit work, has a general mandate to carry out any kind of analysis or study and to take part in assessing strategic projects or intervening in specific issues at the request of the General Management. Internal Audit and Inspection define their audits and inspections using a risk-based approach and define an annual work programme, comprising the inspection route map and audit plan. After inspections and audits, IGAD teams follow up implementation of their recommendations.
The London Audit team carries out audit assignments aimed at ensuring the effectiveness of the internal control system, across the SG entities in the UK, Ireland, Channel Islands, Gibraltar and the Middle-East region.
Summary of the key purposes of the role
- Lead assignment planning, execution and reporting of audits both within the covered locations;
- Perform projects and special assignments as required;
- Ensure timely and complete follow-up (review, validation, and documentation) of outstanding audit recommendations;
- Coaching and supervision of less experienced staff;
- Work closely and maintain a good level of interaction/co-operation with business stakeholders as well as with direct team members and audit staff at other locations;
- Actively participate and/or perform the yearly risk assessment as supervised by Regional Supervisors and Management.
Summary of responsibilities
- Performing audit assignments
As Head of assignment, ensure that:
- Audit assignment Planning – Effective and efficient diagnostic work on audit is performed.
- Audit assignment execution – Audit work if properly assigned to team members and monitored, ensuring that less experienced team members execute their work in accordance with departmental standards.
- Fully adhering to departmental assignment management requirements, e.g., Tollgate’s process.
- Complete audit assignments within assigned budgets and agreed timelines.
- Audit assignment reporting - Deliver well written and clear audit reports .
- Manage the staff evaluations process on assignments, ensuring that assignment staff objectives are set for all auditors on their assignments (in line with individual development objectives), and ensuring that honest, constructive and timely feedback is provided. Timely escalation of any staff performance issues to the Regional Supervisors/Audit Management.
As assignment team member when required:
- Execution of audit work on business audits in the locations covered by the UK regional team.
- Participation in Audit Diagnostic work under the supervision of Heads of Assignment.
- Audit testing in accordance with test plans assigned by Heads of Assignment.
- Document audit issues and all work papers in standard departmental formats and perform operational debriefs to auditees in conjunction with the Head of Assignment.
- Follow up outstanding audit recommendations until implementation.
- Occasionally, perform Special Assignments as necessitated
- For example, on Assignments requested by Audit Management, with other SG Audit departments or with Inspection Générale.
- From time-to-time Audit management may assign specific tasks related to the organization and running of the department, e.g. some projects related to various aspects of departmental efficiency and effectiveness.
- Proactive follow-up of outstanding audit recommendations until implementation
- Timely and rigorous (i.e. reviewed, validated and well-documented) follow-up of allocated audit recommendations until completion.
- Anticipation and identification of delays and issues in relation to deliverables.
- Appropriate escalation and active assistance in the resolution of issues raised during the recommendation implementation process.
- Reporting on recommendation follow up status to Audit Management on a regular basis.
- Tasks related to the Audit Department’s organisation
- Assist in the preparation of presentations used for various Control Committees (reports, presentations and statistics).
- Contribute to the preparation of internal Audits annual Risk Assessment and continuous monitoring.
- Comply at all times with the requirements of the SG & IGAD policies and procedures and prescribed International Institute of Internal Auditors (IIA) Standards.
- All audit staff are required to sign the IIA Declaration of Professional standards and Code of Ethics on an annual basis.
- Coaching of less experienced audit staff
- Provide assistance, advice and practical training to less experienced colleagues on both the audit process/ methodology and SG businesses and products.
- Actively participate and/or perform the yearly risk assessment, which is the basis for the preparation of the yearly Audit plan when required.
- Fulfil all audit quality standards expected as defined by Quality Assurance function.
- When assigned responsibility for other audit staff, ensure that departmental quality standards are adhered to.
- Contribute to the audit innovation culture of conceptualizing meaningful data analytics use-cases which can be used by audit teams globally.
- Ethics and Conduct
- Responsibility for ensuring that you are fully aware of and adhere to internal policies that relate to you, your business or other businesses for which you have any level of responsibility. It is your responsibility to ensure compliance with operational risk or compliance requirements (e.g. Golden rules, security policies and regulatory requirements).
- Responsibility for managing, controlling, preparing and escalating risk within the scope of your position.
- Responsibility for reading, understanding and complying with the Company’s Conduct and Standards and corresponding regulations. You will be notified of changes to policies in a timely manner through announcements and/or intranet updates.
- Act with integrity and due skill, care and diligence in carrying out your duties. Your actions should always be able to satisfy high standards of scrutiny and professional practice standards defined by the IIA.
- All audit staff are required to sign the IIA Declaration of Professional standards and Code of Ethics on an annual basis. You sign to agree conformance to the following rules of conduct:
- Shall perform your work with honesty, diligence, and responsibility.
- Shall observe the law and make disclosures expected by the law and the profession.
- Shall not knowingly be a party to any illegal activity or engage in acts that are discreditable to the profession of internal auditing or to the organization.
- Shall respect and contribute to the legitimate and ethical objectives of the organization.
- Shall not participate in any activity or relationship that may impair or be presumed to impair their unbiased assessment. This participation includes those activities or relationships that may be in conflict with the interests of the organization.
- Shall not accept anything that may impair or be presumed to impair your professional judgment.
- Shall disclose all material facts known to you that, if not disclosed, may distort the reporting of activities under review.
- Shall be prudent in the use and protection of information acquired in the course of your duties.
- Shall not use information for any personal gain or in any manner that would be contrary to the law or detrimental to the legitimate and ethical objectives of the organization.
- External contacts (under the supervision of Supervisor and Audit management)
- Outsourcing Company (on a case by case basis within assignment).
- External Auditors.
- Regulators, strictly under the supervision of Audit Management.