Job Title: Information Systems Auditor
Location: Kampala, Uganda
Job Grade: Senior Officer

Main Purpose of the Job:
The Information Systems Auditor will conduct audits across the Bank’s IS Infrastructure Systems and Business Applications, encompassing audits of complex computer applications and technological solutions. This role aligns with existing IAD Work plans and professional standards on IS auditing, Internal Audit Methodology, processes, procedures, and timeframes.

Key Results Area:

  • Enhance efficiency and effectiveness in audit, inspection, and audit administration throughout Salaam Bank.
  • Provide timely and accurate information to the Manager, Information Systems Audit on IT audit, inspection, IT general controls, and IT administration within the bank.

Key Responsibilities:

  1. Conduct independent risk assessments of all new and existing systems.
  2. Plan and execute risk-based Information Systems audits in accordance with Internal Audit Methodology, processes, procedures, and timeframes.
  3. Prepare audit reports promptly, outlining findings and recommendations for procedural enhancements and internal control improvements.
  4. Offer Information Systems consultancy services for Bank projects, ensuring compliance with best practices.
  5. Perform application/website vulnerability assessments and penetration testing.
  6. Execute the ICT Audit Annual Plan as approved by the Board Audit Committee.
  7. Ensure adequate planning to align IS audits with corporate and business objectives.
  8. Review general and application controls for simple to complex computer information systems.
  9. Assess information control procedures and security for systems under development.
  10. Monitor the implementation and operation of defined controls continuously.
  11. Develop and maintain skills to contribute effectively to the Internal Audit team, including training non-IT auditors on basic IT tests and controls.
  12. Draft audit reports for conducted audits.
  13. Follow up on outstanding audit issues for resolution.
  14. Undertake any other tasks delegated or assigned by management.

Key Performance Measures:

  • Increased efficiency in audit execution while consistently maintaining high-quality standards.
  • Internal customer service satisfaction rating.
  • Minimization of IT risks through process improvement recommendations.
  • Completion of the Annual IT Audit Plan against assigned audits.
  • Proper documentation of audit working papers for all stages of Planning, Execution, Reporting, and Follow-up.

Important Relationships:

  • Build relationships internally and externally, adapting to diverse environments.
  • Collaborate across the organization, regionally and in-country at senior levels.
  • Report to the Manager, Information Systems Audit.
  • Participate in regional and cross-country forums for team-building and sharing best practices.

Knowledge, Experience, and Personal Competencies:
Qualification & Experience:

  • Bachelor’s degree in Computer Science or IT-related field.
  • IT audit experience or substantial experience in IT Operations Support or IT Development.
  • Minimum of 2 years of practical audit/IT experience in a commercial banking environment or a large organization at a senior level, preferably in IT Audit.
  • IT audit or security-related qualification (CISA, CEH, CISM, CISSP, CRISC, etc.).
  • Experience in auditing operating systems, firewall, etc.

Knowledge:

  • Experience in risk-based auditing, risk/control, or IT security activities.
  • Understanding of control, regulatory, and risk issues relating to information technology.
  • Good grasp of technology and its business applications, including knowledge of current and emerging technology issues.
  • Specialist knowledge of Infrastructure and IT processes or auditing business processes within a Financial Services organization.
  • Knowledge in risk assessment & control concepts/methodologies.
  • Knowledge in audit tools & techniques including process mapping, control identification & analysis, and design of audit tests.

Personal Competencies:

  • Structured approach to complex and variable work environments.
  • Balancing opposing business requirements effectively.
  • Strong evaluation, communication, and reporting skills.
  • Excellent interviewing, negotiating, and presentation skills.
  • Ability to provide advice and evaluation to support business decision-making.
  • Independent and logical thinker, with a focus on implementation.
  • Leadership by example.
  • Effective management of large volumes of information, adding value through management reporting.
  • Strong relationship-building and networking skills.
  • Commitment to strong service ethics.

CLICK HERE TO APPLY

 

 



Get Email Job Updates

Enter your email address to receive daily notifications of new jobs by email.

Join 17.6K other subscribers

By Tina

Incase you have any inquiry, let us know by commenting here.

This site uses Akismet to reduce spam. Learn how your comment data is processed.