Principal Audit Officer - Systems

REF  NTSA/02/2023/16

Key Duties and Responsibilities 

• Ensure annual risk assessment and preparation of annual internal system audit work plan and budget in a timely manner;
• Manage and coordinate various information systems audit activities and assignments;
• Review audit assignment proposals, audit plans and engagement programmes for audit of ICT systems;
• Ensure preparation and/review of information systems audit working papers, audit findings and draft audit reports on information systems are prepared in time;
• Ensure maintenance of high audit standards, adherence to plans, budgets and work schedules;
• Monitor and make follow up on implementation of internal and external system audit recommendations and maintain a database of the implementation rate in consultation with the Manager, Internal Audit;
• Prepare monthly, quarterly and annual internal system audit reports/returns and advise on areas for improvement;
• Carry out investigation on irregularities identified or reported in system audit reports or by management or any other source;
• Identify activities and processes subject to information systems audit coverage, evaluating their significance and assessing the degree of risk inherent in terms of the audit costs involved;
• Reviewing responses on draft audit report, prepare final audit reports and submit for review by the Manager Internal Audit;
• Identify training needs for ICT auditors and ensure that relevant trainings are provided;
• Review compliance with regulations, instructions and procedures in implementation of ICT systems; and
• Head special audit assignment teams that may be appointed from time to time.

Key Qualifications and Experience: 

For appointment to this position, a candidate must have:

• Bachelor’s Degree in Information Systems/Computer Science/Computer Engineering or any other relevant field from a recognized institution;
• Master’s Degree in Computer Science, IT, Business Information Systems (or related technical / business field) from a recognized university will be an added advantage; 
• At least eight (8) years relevant work experience, three (3) of which must have been in a supervisory position in the Public/Private sector;
• Attended a Senior Management Course lasting not less than four (4) weeks from a recognized institution;
• Holder of Certified Information Systems Auditor (CISA) or other qualifications e.g. CISM, CISSP, CRISC, CEH;
• Registered as member of ISACA or other IT professional body in good standing;
• Computer Proficiency; and
• Shown merit and ability as reflected in work performance and results