The Incumbent will be responsible for conducting Internal Audits related to Information Technology functions and the technology applications that support departmental business functions to ensure that the systems controls are appropriate to the task and function effectively.

Principal Accountabilities

• Work with the Head of Internal Audit in verifying compliance with all the relevant legislation and regulatory requirements.
• Perform general and application control reviews for simple to complex computer information systems.
• Perform information control reviews to include operating procedures, system security, programming controls, communication controls, back up and disaster recovery.
• Preparing Audit finding memoranda and working papers to ensure that adequate documentation exists to support the completed audit and conclusions.
• Prepare audit reports on various operational issues related to computerized information systems and on general business operations as needed.
• Carry out detailed audit tests on all the company’s operations based on standard audit programmes in accordance with the approved Annual Audit Plan .
• Review internal control systems and make recommendations on improvements to ensure that such systems are up to date .
• Undertake and complete internal audit plans within given timelines as directed by the Head of Internal Audit.
• Conduct continuous vulnerability and risk assessment of the information technology environment.

Key Qualifications and Competence

• Bachelor’s Degree in IT or any other relevant Business field
• Certificate Information Systems Auditor (CISA)
• CPA (K)
• Excellent understanding of auditing concepts and practices with a minimum of 5 years’ experience.
• ISO 9001-QMS, ISO 27001-ISMS, ISO 22301-BSM, COBIT and ITIL Frameworks Implementation and Review
• Information Systems Audits and Controls Testing (IT General & Application Controls Review)
• Skilled conflict management to resolve problems that may arise during an audit.
• Demonstrable knowledge in risk assessment and control concepts/methodologies.
• Data Analytics (Arbutus ACL).