Independently and actively plan assigned audit engagements and any related tasks under the supervision of the Head of IS Audit.
Asses information technology operating environment and monitor the overall IS functional processes.
Examine testing environment, applications and compliance with applicable standards and IS regulations.
Perform IT applications, infrastructure and IT security audits (e.g. network, operating system and data center), including evaluating of security vulnerabilities are properly identified and mitigated.
Perform reviews of IT management policies and procedures such as change management, business continuity planning/ disaster recovery and information security to ensure that controls surrounding these processes are adequate.
Prepare and present clear and concise reports to summarize the work performed during each engagement.
Ensure follow–up on internal audit observations and recommendations and report on the status and progress for management’s action.
Maintain an adequate, up to date level of knowledge of current and emerging IT applications, systems & infrastructure. Maintain an adequate level of knowledge of banking operations.
Revise IS Audit documentation to reflect changes in the Bank’s IT environment.
Perform any ad-hoc IT engagements as directed by the Chief Auditor or the IS Audit Head.
Develop/Update, maintain and document IS audit programs based on international standards.
Provide technical assistance for Financial Audit and Credit Audit including Data Analysis.
Comply with the IT and auditing ethics and standards commensurate with position in IS Audit Department.
Provide on-job training to newly recruited IS auditors as identified by IS Audit Head.
Enhance Audit’s reputation within the Bank by maintaining a professional approach at all times.
Key Performance Indicators
Consistency in adherence to audit schedules and programs.
Control lapses discovered. Audit observations raised.
Compliance, Quality gaps and closures.
Accuracy, acceptability and timeliness in findings and reports.
Qualifications, Experience & Skills
University degree or professional qualifications in IT preferably BE/BTech/MCA, plus relevant working experience.
Professional accreditation such as CISM / CISA / CRISK / CISSP is strongly desired
6 – 8 years of experience (At least 3 years internal or external audit experience from a recognized audit firm (Big 4) or financial institutions, in IS audit.
Understanding of current IT/INFOSEC practices, standards and principles. (COBIT, ITIL, ISO, etc).
Broad knowledge of banking applications (Core Banking, Treasury, Card Management, etc.), banking operations and IT Project Management.
Knowledge of the Bank’s operating systems (VMware, Microsoft, UNIX, SUN, etc), application systems and other IT systems.
Broad knowledge of banking operations and lines of business.
Oral and written communications skills in English.
Attention to detail with excellent report writing skills