INFORMATION TECHNOLOGY / INFORMATION SYSTEM AUDITOR

We are seeking a proactive and detail-oriented Information Technology / Information Systems Auditor with 2-3 years of relevant experience to join our team. The ideal candidate will play a key role in evaluating and ensuring the security, efficiency, and compliance of our IT systems and processes. A strong background in IT auditing, preferably within a financial institution, along with relevant certifications, is highly desirable.

Key Responsibilities:

1. Audit Planning and Execution:

• Assist in developing the IT audit plan based on risk assessments and organizational priorities.
• Conduct IT and system audits, including reviews of IT general controls, application controls, and network security.
• Evaluate the effectiveness of IT governance frameworks, risk management practices, and compliance with industry standards and regulatory requirements.

• Identify IT risks and evaluate the effectiveness of internal controls to mitigate them.
• Analyze system vulnerabilities and recommend corrective measures.

• Assess IT processes and workflows for efficiency and alignment with business objectives.
• Evaluate compliance with IT policies, standards, and procedures, including data protection and cybersecurity protocols.

• Prepare clear, concise, and comprehensive audit reports highlighting findings, risks, and actionable recommendations.
• Maintain detailed documentation of audit activities and outcomes.

• Work closely with IT and business teams to communicate audit findings and provide guidance on implementing corrective actions.
• Stay updated on emerging technologies and IT audit trends to provide insights and best practices.

Required Qualifications:

• Bachelor’s degree in Information Technology, Computer Science, Information Systems, or a related field (Added advantage).
• Minimum 2-3 years of hands-on experience in IT auditing.
• Experience conducting audits of IT departments, preferably within financial institutions or exchange houses.

Preferred Qualifications:

• Professional certifications such as CISA (Certified Information Systems Auditor), CRISC (Certified in Risk and Information Systems Control), or equivalent (Part qualification).
• Knowledge of financial services regulations, especially those impacting IT systems in exchange houses or financial institutions.
• Familiarity with frameworks such as COBIT, ISO 27001, NIST, or PCI DSS.