
Search by job, company or skills

Job Summary
The IT Auditor is responsible for leading and executing risk-based IT audits across the Bank's digital banking ecosystem, including core banking systems, IT infrastructure, cybersecurity, cloud environments, and technology-enabled processes. The role supports the Internal Audit function in evaluating the effectiveness of IT governance, risk management, and internal control systems, while ensuring compliance with regulatory requirements and industry best practices. The position also plays a key role in pre-implementation and post-implementation reviews of critical IT projects and systems to ensure adequate controls are embedded throughout the system lifecycle.
Key Responsibilities
IT Audit Leadership
· Plan, supervise, and execute risk-based IT audit engagements covering core banking systems, digital banking platforms, IT infrastructure, and cybersecurity processes.
· Lead the development and maintenance of the IT audit universe and risk assessment to ensure adequate audit coverage of technology-related risks.
· Support the Chief Audit Executive in integrating IT risk considerations into the overall Internal Audit Plan.
·
Technology Systems and Application Audits
· Conduct audits of core banking systems, digital banking platforms, payment systems, APIs, and system interfaces.
· Evaluate application controls to ensure completeness, accuracy, and integrity of data processing.
· Assess system configurations, automated controls, and system-generated reports supporting financial and operational processes.
·
IT General Controls (ITGC) Audits
· Evaluate key IT General Controls, including:
o User access management
o Privileged access controls
o Change management processes
o IT operations management
o Backup and recovery procedures
o Incident and problem management
Cybersecurity and Technology Risk Audits
· Assess the adequacy of cybersecurity and information security controls, including vulnerability management, security monitoring, and incident response processes.
· Evaluate identity and access management (IAM), network security, endpoint security, and data protection controls.
System Implementation Reviews
· Perform pre-implementation reviews of new systems and major technology projects to ensure that appropriate control design, security standards, and governance processes are embedded prior to deployment.
· Conduct post-implementation reviews to assess system performance, control effectiveness, and achievement of project objectives.
Third-Party and Cloud Risk Reviews
· Evaluate controls over IT outsourcing arrangements and third-party technology service providers, including cloud service providers.
· Review vendor risk management practices and service level monitoring.
Reporting and Issue Monitoring
· Prepare comprehensive audit reports highlighting risks, control deficiencies, and recommended corrective actions.
· Monitor and validate timely remediation of IT audit findings to ensure residual risks are reduced to acceptable levels.
Preferred Qualifications
· Bachelor's degree in Information Technology, Computer Science, Information Systems, Accountancy, or related discipline.
· At least 5–8 years of IT audit, IT risk, or information security experience, preferably in banks, digital banks, fintech companies, or financial institutions.
· Professional certifications such as:
Certified Information Systems Auditor (CISA)
Certified Information Systems Security Professional (CISSP)
Certified in Risk and Information Systems Control (CRISC)
Certified Internal Auditor (CIA)
Demonstrated experience in:
IT General Controls (ITGC) audits
Application controls assessments
Core banking system audits
Cybersecurity control reviews
Pre-implementation and post-implementation system reviews
Technical Skills and Knowledge
· Strong knowledge of IT governance and control frameworks such as COBIT, ITIL, and ISO/IEC 27001.
· Familiarity with data analytics and audit tools, including ACL Analytics, IDEA Data Analysis Software, and Microsoft Power BI.
· Knowledge of database structures and SQL-based data extraction.
· Experience with cloud computing environments (e.g. Amazon Web Services, Microsoft Azure, and Google Cloud Platform).
· Understanding of digital banking architecture, APIs, and fintech integrations.
Leadership and Professional Competencies
· Strategic Risk Perspective – Ability to identify emerging technology risks in digital banking operations.
· Audit Leadership and Project Management – Ability to manage complex IT audit engagements.
· Stakeholder Engagement – Strong communication skills in presenting audit results to senior management and audit committees.
· Analytical and Problem-Solving Skills – Ability to evaluate complex IT systems and identify root causes of control weaknesses.
· Integrity and Professional Judgment – Maintains independence and objectivity consistent with Internal Audit standards.
Job ID: 150870861
We don’t charge any money for job offers