IT Controls Tester

Dreaming big is in our DNA. Its who we are as a company. Its our culture. Its our heritage. And more than ever, its our future. A future where were always looking forward. Always serving up new ways to meet lifes moments. A future where we keep dreaming bigger. We look for people with passion, talent, and curiosity, and provide them with the teammates, resources and opportunities to unleash their full potential. The power we create together when we combine your strengths with ours is unstoppable. Are you ready to join a team that dreams as big as you do?

The Key Purpose of this role is to support the IT Service Governance Manager in maintaining a strong internal control environment across the Zone. The role is responsible for testing ITGCs, application, and security controls to ensure compliance with MICS, SoD requirements, internal policies, and SOX (where applicable). This position reports to the Africa Zone IT Service Governance Manager and plays a key role in ensuring audit readiness and control effectiveness.

Key Roles and Responsibilities:

• Perform walkthroughs and test the design and operating effectiveness of IT General Controls (ITGCs) in areas such as:
• Access Management (e.g., user provisioning, termination, segregation of duties)
• Change Management (e.g., code and configuration changes, emergency changes)
• IT Operations (e.g., system monitoring, backups, job scheduling)
• Evaluate and test controls for key systems and applications in scope for SOX and internal audits.
• Clearly document testing procedures, evidence, and results in accordance with internal audit standards and methodologies.
• Identify control gaps, assess their impact, and support remediation planning with IT and business stakeholders.
• Collaborate with external auditors by providing required documentation and responding to audit inquiries.
• Maintain accurate test trackers, control matrices, and evidence repositories.
• Support the design and implementation of IT controls during process changes, new system deployments, or enhancements.
• Drive continuous improvement and contribute to the optimisation of the IT control testing framework.
• Assist the IT Service Governance Manager with:
• Ensuring compliance with MICS, SOX, SoD requirements, and other control policies.
• Rolling out IT Internal Control requirements across all entities/locations in the Zone.
• Translating global IT process and control requirements into Zone-specific practices.
• Tracking and monitoring implementation progress and compliance status across the Zone.
• Engaging control owners to define action plans, resolve control deficiencies, and improve compliance.
• Maintaining up-to-date MICS documentation including risks, controls, control owners, and design updates.
• Coordinating self-assessments, quarterly reviews, and year-end operational testing cycles.
• Managing testing documentation and ensuring timely closure of deficiencies with sustainable actions.
• Ensuring accurate and timely reporting of assessments and control status to Zone IC and local management.
• Aligning with external audit teams on timelines, testing scope, and reporting expectations.

Key Attributes and Competencies:

• Proactive and detail-oriented with strong integrity and a passion for improving compliance and IT processes.
• Excellent communication and influencing skills, thrive under pressure, and be able to build strong cross-functional relationships.
• Should be able act as a change agent, supporting the implementation of IT controls and new processes across the Zone in collaboration with internal stakeholders.

Minimum Requirements:

• Bachelors Degree or equivalent in Information Systems, Computer Science, Accounting, or a related field is a requirement
• CISA, ITIL Foundation or equivalent will be beneficial
• Minimum 2-4 years of experience in IT Audit, IT Risk Management, or SOX controls testing.
• Familiarity with ITGC frameworks (COBIT, COSO) and regulatory requirements (e.g., SOX).
• Experience with ERP systems (e.g, SAP, Oracle) and supporting IT infrastructure.
• Understanding of cybersecurity principles and access controls.
• Proficient in Microsoft Office Suite, particularly Excel, Word, and PowerPoint for documentation, analysis, and reporting.
• Experience with SOX compliance tools and platforms such as SAP GRC; familiarity with ServiceNow, APP360, or similar governance, risk, and compliance tools is an advantage.
• Good understanding of IT control frameworks and audit testing principles, including control design and evaluation..
• Good understanding of SAP environments, including key modules and their relevance to IT General Controls (ITGCs) and application controls.
• Ability to interpret and assess risks related to access management, change management, and IT operations within enterprise systems.

Additional Information:

Band: VII

ABInBev is an equal opportunity employer, and all appointments will be made in line with ABInBev employment equity plan and talent requirements.