Information Systems Auditor
Overall Purpose
Reporting to the Chief
Internal Auditor, the Information Systems Auditor will give objective and
independent assurance to management that the Information systems in place
are appropriate, well utilized, reliable and secure while giving commensurate
recommendations on areas of improvement and optimization of Information
Technology.
Key Duties and Responsibilities
1. Assist the Chief Internal Auditor in coming up with annual information systems audit plan;
2. Perform information systems audits in line with internal audit methodology, processes, procedures and timeframes;
3. Conduct quality assurance on systems at development and or off-shelve purchases;
4. Conduct investigation as assigned by Chief Internal Auditor from time to time;
5. Assist the Internal Audit Manager in conducting operationsaudits from time to time;
6. Be involved in development of ICT business continuity programme;
7. Review all NSE IT policies and ensure they are aligned to best frameworks such as NIST and Cobit frameworks and other applicable regulations governing IT;
8. Document audit work in the system (teammate) in line with IPPF;
9. Test adequacy and effectiveness of systems control measures within the Exchange on a regular basis and recommend corrective measures to be undertaken in areas of weaknesses identified;
10. Make follow up on the systems audit recommendations to ensure that they are implemented;
11. Develop and maintain the skills, knowledge and expertise to make valuable contribution to the Internal Audit team and be part of the automated audit systems processes;
12. Develop and maintain relationships with key stakeholders to ensure that the most important audit risks are being mitigated and that expectations are being met or exceeded;
13. Assist the Chief Internal Auditor in developing the department’s budget and monitoring expenses against the budget to ensure that funds are optimally utilised; and
14. Generate quality information audit reports giving recommendations on how to mitigate the risks
Minimum Qualifications
i) Bachelor’s degree in
Computer science or Information Technology coupled with a professional
certification in IT
Audit, Risk and Security e.g. CISA, CISM,
CISSP, CRISC,CEH;
ii) 2-3 years relevant professional
experience in IT department handling information security role or Systems audit
role gained from an organization with strong internal control framework,
preferably financial institutions or Audit firm;
iii) Knowledge of risk assessment,
methodologies and technical applications in IT Audits;
iv) Robust analytical, organizational and
interpersonal skills;
v) Knowledge in audit tools &
techniques applicable in information system audits including process mapping,
control identification & analysis and design of audit tests;
vi) High attention to detail, accuracy and
risk awareness; and
vii) Dynamic self-starter with the ability
to work independently as well as be a solid team player.
Key
Competencies
i) Exposure
to the financial services industry is essential;
ii) Working knowledge of Audit Systems and Information systems audit tools will be a plus;
iii) Familiar to internationally
driven standards relating to financial market infrastructures;
iv) An appreciation of global
risks and their impact local economic dynamics: and
v) Dynamic self-starter with the
ability to work independently as well as be a solid team player.
How to Apply
If you are up to the challenge and can clearly demonstrate your
ability to meet
the criteria given above, please submit your application with a detailed CV stating your
current position, current salary and benefits as well as your expected salary, qualifications, experience, names & addresses of three referees and email &
telephone contacts together with copies of your academic and professional
certificates and testimonials to the address below by close of business on Tuesday 22nd November, 2022.
The Chief Executive
Nairobi
Securities Exchange PLC
The
Exchange, 55 Westlands Road
P.O.
Box 43633-00100
NAIROBI
Email: recruitment@nse.co.ke