Information Systems Audit Manager at Equity Bank Kenya

• The Senior Manager - Information Systems Audits is responsible for leading the information systems audit and advisory engagements across the Group. This role oversees the planning, execution, and reporting of IT audits, as well as providing strategic advisory services to enhance the organization's IT controls, risk management practices, and alignment with industry best practices.

Job Responsibilities

Audit Planning and Execution:

• Develop and implement an annual information systems audit plan aligned with the risk assessment and regulatory requirements.
• Lead and coordinate IT audits across the group's subsidiaries, ensuring consistency in audit methodologies and standards.
• Evaluate the design and operating effectiveness of IT controls, application controls, data integrity, change management, and IT operations.
• Assess compliance with relevant IT regulations, industry standards, and internal policies.
• IT Advisory Services:
• Provide strategic advice and recommendations to enhance the Group's IT controls, risk management practices, and overall technology posture.
• Conduct IT assessments, gap analyses, and maturity evaluations to identify improvement opportunities.
• Advise on the implementation of IT frameworks, standards, and best practices across the organization.
• Support the development and review of IT policies, procedures, and guidelines.
• Provide relevant assurance and advisory services in select IT projects.
• Audit Team Management:
• Manage and mentor a team of information systems auditors, providing guidance, training, and professional development opportunities.
• Assign audit and advisory resources effectively across the group's subsidiaries and ensure adherence to timelines and budgets.
• Foster collaboration and knowledge-sharing among the IT audit and advisory teams across different locations.
• Reporting and Communication:
• Prepare comprehensive audit reports and advisory deliverables detailing findings, risks, and recommendations.
• Present audit results, advisory recommendations, and strategic insights to senior management, CIO, and relevant stakeholders.
• Collaborate with local IT audit teams, IT function, and business units to ensure effective communication and alignment.
• Provide strategic level advisory through communication of key themes, insights and foresights to senior management and the Board.
• Stakeholder Management:
• Liaise with relevant stakeholders, including IT managers, business unit leaders, and regulatory authorities, to understand their expectations and requirements.
• Foster positive relationships with internal and external stakeholders, promoting transparency and trust in the audit and advisory processes.
• Continuous Improvement and Thought Leadership:
• Stay updated with emerging IT risks, regulatory changes, and industry best practices, and incorporate them into the audit and advisory programs.
• Contribute to the development of IT strategies, frameworks, and methodologies within the organization.

Qualifications and Experience

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Professional certifications such as CISA, CISSP, or equivalent IT auditing certifications.
• 8+ years of experience in IT auditing, IT risk management, IT advisory services, or related roles, with a focus on the financial services industry.