Job Description
Reporting to the Manager, Internal Audit, the Principal Audit Officer - Systems will be responsible for management and coordination of various information systems audit activities and assignments.
Key Duties and Responsibilities
1. Ensure annual risk assessment and preparation of annual internal system audit work plan and budget in a timely manner;
2. Manage and coordinate various information systems audit activities and assignments;
3. Review audit assignment proposals, audit plans and engagement programmes for audit of ICT systems;
4. Ensure preparation and/review of information systems audit working papers, audit findings and draft audit reports on information systems are prepared in time;
5. Ensure maintenance of high audit standards, adherence to plans, budgets and work schedules;
6. Monitor and make follow up on implementation of internal and external system audit recommendations and maintain a database of the implementation rate in consultation with the Manager, Internal Audit;
7. Prepare monthly, quarterly and annual internal system audit reports/returns and advise on areas for improvement;
8. Carry out investigation on irregularities identified or reported in system audit reports or by management or any other source;
9. Identify activities and processes subject to information systems audit coverage, evaluating their significance and assessing the degree of risk inherent in terms of the audit costs involved;
10. Reviewing responses on draft audit report, prepare final audit reports and submit for review by the Manager Internal Audit;
11. Identify training needs for ICT auditors and ensure that relevant trainings are provided;
12. Review compliance with regulations, instructions and procedures in implementation of ICT systems; and
13. Head special audit assignment teams that may be appointed from time to time.
Key Qualifications and Experience:
For appointment to this position, a candidate must have:
• At least eight (8) years relevant work experience, three (3) of which must have been in a supervisory position in the Public Service/Private Sector;
• Bachelor’s Degree in Information Systems/Computer Science/Computer Engineering or any other relevant field from a recognized institution;
• Holder of Certified Information Systems Auditor (CISA) or equivalent qualifications e.g. CISM, CISSP, CRISC, CEH;
• Attended Supervisory Course lasting not less than two (2) weeks from a recognized institution
• Registered as a member of the Information Systems Audit and Control Association (ISACA) or other IT Professional body in good standing; and
• Fulfilled the requirements of Chapter 6 of the Constitution;