Manager – Information Systems Audit

Key Responsibilities

• Assist HOD in preparing a comprehensive, long-range Audit Plan covering all the Audit activities, prioritizing the audit assignments based on a risk assessment, and scheduling follow-up activities, effectively and efficiently.
• Performs a survey of functions and activities in assigned areas to determine the nature of IT operations and the adequacy of the system controls based on risk assessment.
• Develop audit programs to verify and ensure the organization complies with all the relevant laws and regulations.
• Keep abreast of changes in relevant laws, regulations and industry best practices related to technology and information security. Ensure that the bank’s technology practices align with these requirements.
• Manage the audit resources in individual audit assignments to ensure that professional standards are maintained and execute all assigned audit steps within the approved time budget.
• Oversee/conduct the technology audits assessing IT infrastructure, systems and processes, information security, data governance and technology risk management. Examine and identify areas for improvement and determine the adequacy of the system of controls.
• Evaluate and identify potential risks and vulnerabilities in the bank’s tech and provide recommendations to mitigate these risks.
  
• Review the work performed and verify deliverables to ensure the audit objectives are achieved,  and complete audit documentation as per the IA methodology. 
  
• Oversee preparation, review, and presentation of clear, concise, and insightful audit  reports to senior management. 
  
• Coordinate with other audit executives to provide technology support to all integrated audits. 
  
• Maintain positive relationships with key stakeholders. 
  
• Track the implementation of the audit recommendations, follow up with the auditee to get an  update on the audit action plan and appraise the adequacy of corrective actions taken to  mitigate the risks. 
  
• Lead, coach, and develop audit team members assigned to technology-related audits  to enhance their competencies and productivity. 
  
• Assist the Head of Internal Audit with the coordination of external audits and regulatory  inspections related to the Bank’s information & technology systems. 
  
• Participate in special investigations, ad hoc projects, and support broader internal audit  initiatives as needed. 
  
• Provide input for the revision of audit programs/review approaches to achieve specific  objectives in a more effective/efficient manner.  
  
• Maintain quality in carrying out audit assignments to ensure performance of all audits, at a high  level of efficiency and effectiveness. 
  
• Cultivate a culture of learning and development; seek coaching and mentoring from team  members to enhance skills and capabilities. 
  
• Drive the creation of excellence and high-performance organizational culture by embedding  learning and creativity, to incorporate agility to accelerate transformation. 
  
• Advise management on new developments that affect the IT portfolio/controls and provide  solutions proactively. Communicate complex technical audit concepts clearly and concise manner to non-technical stakeholders. 
  
• Leverage technology solutions, including A.I and foster innovation to enhance GIA efficiency  and effectiveness.  
  
• Perform work in accordance with the charter, which is consistent with the Internal  Audit Charter, which is consistent with the Global Internal Audit Standards (GIAS). All the above accountabilities include, but are not limited to, any additional/new tasks or  responsibilities the Line Manager assigns.

Job Specification

• Graduate in an IT-related field, including Computer Science + Professional  Certificate such as CISA, CGEIT, CISSP, CIA, etc
• Excellent analytical, report writing, and presentation skills. Proficiency in audit management software and data analytics tools is an advantage
• Minimum 7 years of experience in Information Systems Audit,  preferably three years in a banking environment

Dimensions / Context (scope of the job – responsibility for managing) 

Financial :Impact of results from the audits relates to departmental budget, cost reduction of IT operations,  revenue maximisation opportunities identified, and reduced staff costs.

Non-Financial:

• Review the outputs represented by audit work papers, detailing tests performed, results  and conclusions about the adequacy and effectiveness of controls of specific areas under  examination. 
• Audit findings are to be evidenced by audit points and summaries.

Job Complexity/Judgment

• Ability to review and analyse the results arising from assignment planning, testing performed  and identifying the cause of system failures, potential effects and the action necessary to  remedy situations 
• Ability to manage and ensure that engagements are performed in a systematic, disciplined  manner and with due professional care and efficiency within the defined time frame.
  
• Ability to provide input/suggestions for amendments to the audit approach/programs.
• Ability to identify and define audit issues and recommend effective remediation actions. 
  
• Strong leadership, interpersonal, and communication skills with the ability to engage effectively with diverse teams and stakeholders. 
• Ability to provide audit recommendations to improve the controls and reduce costs,  provisions and operational losses. Performing work more efficiently to reduce the  departmental costs, etc. and effectively to product quality deliverables. 
• Ability to mentor and develop junior auditors effectively.

Key Relationship (Internal & External)

Internal interactions : 

Within the Department 

Head of Audit and Audit team members 

Within the Bank  

All departments & Branches 

External interactions: As guided but not limited to Group Internal Auditors, Central Bank Auditors,  External Auditors