Job vacancy IT Auditor

Job Description

Reporting to the Head of Internal Audit, the main responsibility of the IT Internal Auditor is to perform independent reviews and audits of areas relating to Information Technology within the company, by following the risk-based auditing methodology as directed by the Head of Internal Audit.

Reviews and audits involve identifying the area's risk profile and assessing the design and operating effectiveness of the related internal control framework.

Responsibilities:

• Assisting the Head of Internal Audit in carrying out reviews and audits of areas involving Information Technology (namely infrastructure, security, business continuity, policies, processes, third party risks and other IT operations);
• Assisting the Head of Internal Audit in carrying out reviews and audits on the bank's various auditable units and processes as defined in the Bank's Audit Universe;
• Performing (or assisting outsourced specialists in performing) vulnerability assessments and/or penetration testing of the bank's networks, systems and web-based portals/services;
• Ensuring that working methodologies as detailed in the Bank's approved Internal Audit documented framework and policies are adhered to;
• Assisting the Head of Internal Audit in reporting on the findings and areas needing improvement identified through the audit reviews, in making the necessary recommendations as well as in monitoring/following up Management's response and implementation;
• Assisting the Head of Internal Audit in performing remote monitoring and continuous auditing tasks including but not limited to fraud data analytics on an ongoing basis;
• Assisting with the Department's general administrative duties and maintenance of the Department's internal audit system; and
• Keeping abreast with industry standards and best practices and identifying training requirements in line with the IT Internal Auditor's defined responsibilities.

Knowledge, Skills and Abilities

• Relevant tertiary qualification in IT, Business and Computing;
• IT Internal Auditing Qualification (CISA or equivalent);
• Minimum of 2 years relevant experience of IT Internal Audit practices and methodology; and
• Awareness of Banking Products & Operations and the Banking Regulatory Framework is considered an asset.