Manager – Information Systems Audit at Rose Avenue Group

Job Responsibilities

• Assist the HOD in preparing a comprehensive, long-range Audit Plan covering all audit activities, prioritizing audit assignments based on a risk assessment, and scheduling follow-up activities effectively and efficiently.
• Perform surveys of functions and activities in assigned areas to determine the nature of IT operations and the adequacy of system controls based on risk assessment.
• Develop audit programs to verify and ensure the organization complies with all relevant laws and regulations.
• Keep abreast of changes in relevant laws, regulations, and industry best practices related to technology and information security, and ensure the bank’s technology practices align with these requirements.
• Manage audit resources in individual audit assignments to ensure professional standards are maintained and execute all assigned audit steps within the approved time budget.
• Oversee/conduct technology audits assessing IT infrastructure, systems and processes, information security, data governance, and technology risk management. Examine and identify areas for improvement and determine the adequacy of the system of controls.
• Evaluate and identify potential risks and vulnerabilities in the bank’s technology environment and provide recommendations to mitigate these risks.
• Review work performed and verify deliverables to ensure audit objectives are achieved, and complete audit documentation as per the IA methodology.
• Oversee preparation, review, and presentation of clear, concise, and insightful audit reports to senior management.
• Coordinate with other audit executives to provide technology support to all integrated audits.
• Maintain positive relationships with key stakeholders.
• Track the implementation of audit recommendations, follow up with the auditee to get an update on the audit action plan, and appraise the adequacy of corrective actions taken to mitigate the risks.
• Lead, coach, and develop audit team members assigned to technology-related audits to enhance their competencies and productivity.
• Assist the Head of Internal Audit with the coordination of external audits and regulatory inspections related to the Bank’s information and technology systems.
• Participate in special investigations, ad hoc projects, and support broader internal audit initiatives as needed.
• Provide input for the revision of audit programs/review approaches to achieve specific objectives in a more effective/efficient manner.
• Maintain quality in carrying out audit assignments to ensure performance of all audits at a high level of efficiency and effectiveness.
• Cultivate a culture of learning and development; seek coaching and mentoring from team members to enhance skills and capabilities.
• Drive the creation of excellence and a high-performance organizational culture by embedding learning and creativity, to incorporate agility to accelerate transformation.
• Advise management on new developments that affect the IT portfolio/controls and provide solutions proactively. Communicate complex technical audit concepts clearly and concisely to non-technical stakeholders.
• Leverage technology solutions, including AI, and foster innovation to enhance GIA efficiency and effectiveness.
• Perform work in accordance with the Internal Audit Charter, consistent with the Global Internal Audit Standards (GIAS).
• All the above accountabilities include, but are not limited to, any additional/new tasks or responsibilities the Line Manager assigns.

Scope of the Job – Responsibility for Managing

• Financial : Impact of results from the audits relates to departmental budget, cost reduction of IT operations, revenue maximisation opportunities identified, and reduced staff costs.
• Non-Financial : Review the outputs represented by audit work papers, detailing tests performed, results and conclusions about the adequacy and effectiveness of controls of specific areas under examination. Audit findings are to be evidenced by audit points and summaries.

Other Requirements

• Graduate in an IT-related field, including Computer Science, with a Professional Certificate such as CISA, CGEIT, CISSP, CIA, or equivalent.
• Minimum of 7 years of experience in Information Systems Audit, preferably with at least 3 years in a banking environment.
• Strong knowledge of IT general and application controls, IT infrastructure, information security, and banking operations/products and processes.
• Experience with audit management software and data analytics tools is an advantage.