Manager – Information Systems (IS) Audit at Family Bank Ltd

• The Manager – IS Audit will design and execute technology-focused audit plans covering infrastructure, applications, cybersecurity, and digital initiatives, ensuring alignment with the Bank’s transformation strategy and regulatory requirements. This role is critical to strengthening IT risk oversight and safeguarding the integrity, confidentiality, and availability of information assets across the bank’s expanding digital, retail, and MSME platforms.

Key Responsibilities:

• IS Audit Planning and Execution
• Develop and implement a risk based IS audit plan aligned with the bank’s technology and transformation agenda.
• Conduct audits of IT infrastructure, core banking systems, digital channels, cybersecurity controls, and emerging technologies (e.g., cloud, APIs, fintech integrations).
• Ensure audits are conducted in accordance with IIA and ISACA standards.
• Evaluate the adequacy of IT general controls (ITGCs), application controls, and change management processes.
• Cybersecurity and Digital Risk Assurance
• Assess the cybersecurity posture, including vulnerability management, data protection, and incident response.
• Provide assurance on the design and effectiveness of identity & access management, network security, and data loss prevention measures.
• Evaluate digital banking, mobile, and internet platforms for operational resilience and security compliance.
• IT Governance and Risk Advisory
• Review IT governance frameworks, project management practices, and system acquisition processes to ensure control integration.
• Advise management on emerging technology risks, regulatory compliance (CBK, Data Protection Act, PCI DSS, IS27001), and IT risk mitigation strategies.
• Support the Chief Internal Auditor in presenting IT audit findings and risk insights tsenior management and the Board Audit Committee.
• People Leadership and Collaboration
• Lead and mentor a team of IS Auditors, ensuring skill growth in IT and cybersecurity audit.
• Collaborate with Risk, Compliance, IT Security, and Operations teams tstrengthen overall control culture.
• Champion a learning and innovation mindset within the audit function.
• Any other official duty that may be allocated from time ttime.
• HR Department Doc.

The Person:

The ideal candidate must possess the following:

• Bachelor’s degree in Information Technology, Computer Science, Information Systems, or related field.
• Master’s degree in Information Security, Risk Management, or Business Administration is an added advantage.

Professional Certifications:

• CISA (Certified Information Systems Auditor) – required
• CISSP, CRISC, CISM, CEH, IS27001 LA – added advantage
• Additional certifications in Data Analytics (e.g., Power BI, ACL, IDEA) are desirable.

Experience Required

• Minimum 8 years’ experience in Information Systems Audit or IT Risk Management, preferably within a commercial banking environment.
• At least 3 years in a supervisory or managerial audit role.
• Demonstrated experience in auditing core banking applications, cybersecurity frameworks, and digital platforms.
• Proven participation in audits involving cloud infrastructure, fintech integrations, or large-scale system
• implementations.
• Experience with regulatory engagements