The role holder is responsible for carrying out a detailed evaluation of IT-dependent internal controls and audit review of the Bank’s information systems and projects, utilizing specified methodology and adhering to Department and professional standards. The position requires performing IS audit engagement planning, execution, and reporting, working closely with the IS Audit Managers.
Key Responsibilities / Deliverables:
- Actively participate in performing risk assessments during annual planning as well as engagement planning.
- Undertake audit engagements as assigned, ensuring they are completed within specific time budgets and quality parameters to achieve the Internal Audit Plan.
- Carry out walkthroughs and document process gaps, including performing risk assessments, and developing or updating audit programs based on the assessments done.
- Adopt the use of Teammate and available audit tools, leveraging the Bank’s core systems to achieve efficient, effective, and quality audit assignments.
- Clearly report on audit findings.
Qualifications, Knowledge, Skills and Abilities
Education and Certifications:
- Bachelor’s degree in computer science, Information Technology, or a related field.
- Certified Information Systems Auditor (CISA) or equivalent certification.
Experience:
- 2–3 years of cumulative experience in Information Systems Audit within a reputable audit firm or financial institution.
Core IT Knowledge and Technical Skills:
- Strong understanding of auditing concepts and practices in line with professional audit standards.
- Knowledge of the banking or financial services industry, including:
- Business processes
- Risk and control environments
- Supporting business systems and technologies
- Solid IT knowledge with emphasis on:
- General IT operations
- Enterprise IT infrastructure and networks
- Cybersecurity and data privacy
- Emerging technologies such as cloud computing
- Familiarity with common IT platforms, including:
- Operating systems
- Relational databases
- Network and mobile technologies
- Oracle databases
- Unix/Linux and Windows environments
- Understanding of IT frameworks, principles, and best practices related to:
- IT operations
- Cybersecurity
- Project delivery (e.g., ISO 27000, ISO 20000)
Professional and Interpersonal Skills:
- Excellent report writing skills.
- Strong team leadership and supervision capabilities.
- Self-driven with the ability to work under minimal supervision and demonstrate maturity.
- Team player with strong interpersonal, communication, and stakeholder management skills.
- Strong analytical and problem-solving abilities.