Execution of a comprehensive audit plan based upon risk assessment, management’s goals and objectives, and the requirements of the Board Audit Committee.
Perform Risk management reviews designed to provide assessment of internal control processes and operational performance, in accordance with department and professional standards.
Assist in preparing detailed plans for performing individual audits including the identification of key risks and controls, determination of audit objectives, development of an appropriate audit program and make necessary recommends for staff and budget to complete the project
Review departments risk registers e) Review Business Continuity and Disaster Recovery Plans
Document workings on audit tests carried out in Audit Management System (Teammate).
Prepare audit working papers documenting the result of reviews of assigned activities and recommended management action.
Prepare under minimal supervision draft audit findings on assessment of systems, processes and operations, and management’s planned corrective actions.
Carrying out ad hoc special assignments and investigations
Bachelor’s degree in Finance, Accounting, Business, Mathematics, Information Technology, financial analysis, insurance or banking.
Professional Qualifications / Membership to professional bodies:
CIA II,CPA II or CISA
Certification in risk management assurance (IIA), Certification in Risk and Information Systems Control (CRISC), Risk Management Professional (PMI-RMP
Membership of Institute of Risk Management (IRM), PMI, ICPAK, ISACA or IIA
Work experience required:
At least 2 years work experience. in an environment that provides exposure to risk management and assurance, governance and control self-assessment
Understanding of concepts related to Risk management and business continuity
High level of integrity.
Ability to understand business processes and good awareness of functional relationships of Departments within the Authority.
Ability to apply audit standards through practical application.
Understanding and ability to apply risk and control concepts.