Job purpose:
• Reporting to Head of Internal Audit, the role is responsible for leading IT audits that provide reliable, valuable, and independent assurance to the board and management on the effectiveness of governance, risk, and control over current and evolving risks within Information Technology.
• To provide an independent view of risk management and internal controls practices that impact the adoption and utilization of IT within the Bank and technical advisory to management on the assessment of IT risks and controls related to complex business applications and innovative technological solutions.

Location: kampala

Key accountabilities:
• Provide leadership and supervision of all IT related audits and assurance reviews within the bank in compliance with the audit methodology and professional standards like IIA and ISACA.
• Execute audit planning, fieldwork, and reporting for information technology, information security, system and integrated audit engagements.
• Prepare the Quarterly Management Information Systems reports for the board audit committee;
• Prepare audit reports that accurately summarize the most significant control weaknesses and resulting impacts to the bank. Analyze evidence gathered and communicate findings and recommendations to appropriate levels of management through Exit meetings and written reports.
• Participate in development of the annual internal audit planning in relation to IT audits.
• Champion the risk assessment exercise in relation to IT processes within the bank.
• Follow up with key business owners of audited systems or Projects to ensure that any outstanding audit recommendations are implemented.
• Build effective relationships with Business and Technology stakeholder like BT Operations, Change and Innovation, Product Development, Operations & Risk departments to stay abreast of activities within IT for consideration of risk assessment, audit scoping and planning.
• Engage with Project Managers and Executive Sponsors of strategic business projects to identify areas of advisory and assurance review services.
• Carry out advisory reviews for major IT related systems, projects, and innovations in order to minimize risk and enable achievement of the Bank’s strategic goals.
• Perform special projects as assigned by the Head of Internal Audit or Audit Committee such as information security reviews and IT fraud investigations.
• Develop strategies and innovative ways to improve the department’s ability to identify enterprise risks within IT and develop audit procedures that help ensure these risks are appropriately managed.
• To ascertain the level of compliance with established laws, regulations, policies and standards within Information Technology.
• Mentor and coach team members and support them to develop their capabilites, and provide technical guidance and support during execution of audit assignments.

Qualifications, experience and competencies required:
• Bachelors degree in Computer Science/Information Technology/Management Information Systems, Finance, Accounting or related discipline.
• Technical professional certification required (CISA, CISSP, CISM, CRISC or MS SQL Server).
• At least 5 years’ experience in a senior IT management or IT Audit within COBIT/CISSP/ITIL or related experience.
• Ability to develop and manage relationships with different management levels within the organization.
• Experience analysing data and coding with specialized tools (MS SQL Server, IDEA, ACL).
• Full understanding of Auditing Concepts and Principles.
• Proficiency with Microsoft Office applications, including Word, Excel, Access, and PowerPoint.
• Working knowledge in the areas of financial applications, Windows operating systems, application development lifecycle, data center operations, network security audits, internet and related technologies, general network technologies, ERP Systems, databases.
• Familiarity with IT audit tools.
• Excellent oral and written communication skills.
• Strategic thinker with good analytical and problem-solving skills.
• Strong project management skills.
• Strong stakeholder management skills.
• Strong interpersonal skills, including the ability to influence others and establish credibility with Business Partners.