Conduct continuous vulnerability and risk assessment of the information technology environment;
Oversee the control and management of activities of the IS Audit;
Assist in the development of the annual Information Systems audit plan;
Continuous review of internal processes and controls to determine their effectiveness in risk management;
Execute the Information Systems Audit Plan;
Identify and assesses IT related risk as well as performing tests of controls;
Facilitate an integrated approach to IT and business auditing;
Assist the Information Systems Auditor manager to coordinate with external auditors on IT related matters;
Consult engagements relating to information systems and related processes;
To be involved in pre and post implementation reviews for new system developments, and in the review and follow up of computer security matters.
To plan and carry out risk driven audit assignments on a functional or area basis under the guidance of an Audit Manager;
Develop and maintain a sound audit manual detailing audit practices, procedures and standards;
Attend meetings and take on initiatives/ responsibilities as may be assigned by the Information Systems Audit Manager; and
Deliver on performance requirements as defined in the departments’ strategy map, balanced scorecard and Personal Scorecard .
Knowledge, experience and qualifications required:
Bachelor’s degree in Computer Science or any other relevant IT- related field.
A Certified Information Systems Auditor (CISA)
CISM, CIA, CPA (K) certified and Certified Financial Analyst (CFA); KASNEB will be an added advantage
3-5 years working experience in Information Systems Audit
Presenting and Communicating Information: Speaks fluently; expresses opinions, information and key points of an argument clearly; presents effectively; responds quickly to others ‘reactions and feedback during conversations; projects credibility.
Working with People: Shows respect for the views and contributions of other team members; shows empathy; listens, supports and cares for others; consults others and shares information and expertise with them; builds team spirit and reconciles conflict; adapts to the team and fits in well.
Adhering to Principles and Values: Upholds ethics and values; demonstrates integrity; encourages individual responsibility towards the community and the environment; models the organisational values during every day interactions.
Analysing: Analyses numerical data and all other sources of information, to break them into component parts, patterns and relationships; probes for further information or greater understanding of a problem; makes rational judgements from the available information and analysis; demonstrates an understanding of how one issue may be part of a much larger system.
Planning and Organising: Adhere to and monitor clearly defined objectives; plans activities and projects well in advance and takes account of possible changing circumstances; identifies and organises resources needed to accomplish tasks; manages time effectively; monitors performance against deadlines and milestones.
Delivering Results and Meeting Customer Expectations: Focuses on customer needs and satisfaction; sets and models high standards for quality and quantity. Monitors and maintains quality and productivity. Works in a systematic methodical and orderly way. Consistently achieves projects goals.