Job Purpose

• Lead the execution of Information Systems Audit of the Bank’s IT infrastructure. Produce a balanced report highlighting the risk issues supplemented with practical recommendations. Keep track of the IT risks and controls process through desk monitoring. Perform routine and non-routine internal audits, investigations, procedures/ policies review, project participation and administrative assignments, and evaluation and reporting assignment results.

Key Responsibilities

• Assist HOD in preparing a comprehensive, long-range Audit Plan covering all the Audit activities, prioritizing the audit assignments based on a risk assessment, and scheduling follow-up activities, effectively and efficiently.
• Performs a survey of functions and activities in assigned areas to determine the nature of IT operations and the adequacy of system controls based on risk assessment.
• Develop audit programs to verify and ensure the organization complies with all the relevant laws and regulations.
• Keep abreast of changes in relevant laws, regulations and industry best practices related to technology and information security.
• Ensure that the bank’s technology practices align with these requirements.
• Manage the audit resources in individual audit assignments to ensure that professional standards are maintained and execute all assigned audit steps within the approved time budget.
• Oversee/conduct the technology audits assessing IT infrastructure, systems and processes, information security, data governance and technology risk management.
• Examine and identify areas for improvement and determine the adequacy of the system of controls.
• Evaluate and identify potential risks and vulnerabilities in the bank’s technology environment and provide recommendations to mitigate these risks.
• Review the work performed and verify deliverables to ensure the audit objectives are achieved, and complete audit documentation as per the IA methodology.
• Oversee preparation, review, and presentation of clear, concise, and insightful audit reports to senior management.
• Coordinate with other audit executives to provide technological support to all integrated audits.
• Maintain positive relationships with key stakeholders.
• Track the implementation of the audit recommendations, follow up with the auditee to get an update on the audit action plan and appraise the adequacy of corrective actions taken to mitigate the risks. Lead, coach, and develop audit team members assigned to technology-related audits to enhance their competencies and productivity.
• Assist the Head of Internal Audit with the coordination of external audits and regulatory inspections related to the Bank’s information & technology systems. Participate in special investigations, ad hoc projects, and support broader internal audit initiatives as needed.
• Provide input for the revision of audit programs/review approaches to achieve specific objectives in a more effective/efficient manner.
• Maintain quality in carrying out audit assignments to ensure performance of all audits, at a high level of efficiency and effectiveness.
• Cultivate a culture of learning and development; seek coaching and mentoring from team members to enhance skills and capabilities.
• Drive the creation of excellence and high-performance organizational culture by embedding learning and creativity, to incorporate agility to accelerate transformation.
• Advise management on new developments that affect the IT portfolio/controls and provide solutions proactively.
• Communicate complex technical audit concepts clearly and concise manner to non-technical stakeholders. Leverage technology solutions, including A.I and foster innovation to enhance GIA efficiency and effectiveness.
• Perform work in accordance with the charter, which is consistent with the Internal Audit Charter, which is consistent with the Global Internal Audit Standards (GIAS).

Job Specification

• Education    Graduate in an IT-related field, including Computer Science + Professional Certificate such as CISA, CGEIT, CISSP, CIA, etc.
• Training / Skills    Excellent analytical, report writing, and presentation skills. Proficiency in audit management software and data analytics tools is an advantage
• Work Experience    Minimum 7 years of experience in Information Systems Audit, preferably three years in a banking environment
• Competencies    Behavioral: Think & Act Customer, Business & Strategic Acumen, Ownership & Accountability, Change & Innovation Agility, Proactive and collaborative and a Digital Mindset.
• Core technical (knowledge and skills): Principles of IT general and Application Controls, Bank’s IT Infrastructure, Information System Auditing, Information Security, Bank Operation/products and processes
• Fundamentals of Islamic Banking Products is an added advantage