| Job details |
| Internal Audit Team |
| Job Title: |
Principal Professional in Charge of IT Systems Audit |
| Grade: |
P3 |
| Supervisor: |
|
| Location: |
HQ |
| Working Mode: |
Hybrid |
| Purpose |
| Principal Professional in Charge of IT Audit is responsible for directing a team of internal Information Systems (IS) audit staff to monitor the Authority’s Information System security, project development, and review computer fraud to ensure the technology in place and system controls are adequate to meet business objectives and customer needs. |
| Key duties and responsibilities |
- Identify key business risks to information systems, test controls, evaluate and make recommendations for improvement.
- Participate in the development of annual audit plan using risk assessment techniques to identify areas of concern and prioritize audit activities accordingly.
- Conduct highly complex, impactful, or sensitive technical IT related operations following the design of appopriate audit tests to evaluate the controls in place.
- Prepare working papers documenting adequately the work performed.
- Prepare and submit to supervisors clear and concise audit reports detailing findings, risks, and recommended improvements.
- Supervise the work of the Professionals in Charge of IT Internal Audit.
- Formulate effective liaison between the auditors and auditees to ensure meeting of reporting and response timelines, quality and documentation standards, and provide status feedback to Management.
- Provide assurance to RRA Senior Management that IT service management practices will ensure delivery of the level services required to meet RRA’s strategic objectives.
- Follow up IT internal audit recommendations and other external audits recommendations to confirm their implementation.
- Get involved in industry trends, regulatory requirements, and stay informed about the best practices related to IT audits and compliance frameworks (e.g. ISO 27001 ISMS, ISACA)
- Prepare periodc reports on the progress of IT audits for supervisors and RRA Management.
|
| Required Academic Qualification |
| Preferred Qualifications |
- Bachelor’s Degree in Information Technology, Information Systems, Computer sciences, Computer Engineering
|
| Relevant Qualifications |
- Bachelor’s Degree in Business Information Technology
|
| Required Trainings |
- THE CANDIDATE SHOULD BE A CERTIFIED INFORMATION SYSTEMS AUDITOR (CISA) OR HAVE A THOROUGH UNDERSTANDING OF THE CISA REVIEW MANUAL AND BE PLANNING TO SIT FOR THE EXAM.
|
| Required Affiliations |
- Being affiliated with ISACA(Information Systems Audit and Control Association) is an added advantage.
|
| Skill Type |
Required Skill |
Required Proficiency level |
| Expert knowledge of internal auditing, internal controls, risk management, and finance & account |
Internal controls and risk management, |
low |
| Interpersonal |
Excellent interpersonal skills |
advanced |
| IT Security |
Information security management based on ISO 27001 STANDARD |
low |
| Negotiation skills |
Negotiation skills |
advanced |
| Proficient in data mining software such as IDEA and ACL. |
Proficient in data mining software such as IDEA and ACL. |
low |
| Required Competencies |
- Decision making
- Analytical skills
- People management
- Communication
- Reporting
- Confidentiality
|
| Required Experiences |
- 6 years experience in IT related field, preferably in Cyber Security Services, and at least 2 years in IT Auditing
|
CLICK HERE TO READ MORE AND APPLY
