IT Auditor

The IT Auditor will be responsible for planning and executing IT audits, identifying risks, evaluating controls, and providing recommendations in the areas of cybersecurity, data privacy, system development, and IT operations. The ideal candidate will be instrumental in assessing the effectiveness and efficiency of the bank’s IT systems, ensuring alignment with regulatory requirements and best practices.

Responsibilities:

1. Develop, maintain, and regularly update the audit universe for all processes related to Information Technology & Security.
2. Perform risk assessment and audit planning on a quarterly basis ensuring critical areas requiring attention have been identified.
3. Lead and conduct comprehensive IT audits, covering cybersecurity, application controls, IT infrastructure, and third-party risk management, ensuring that audit planning, testing, and reporting is in accordance with Audit methodology and Internal Auditing Standards.
4. Develop risk-based audit plans and documentation to support audit findings and recommendations.
5. Evaluate the bank’s IT policies, processes, and systems to identify vulnerabilities and recommend improvements.
6. Ensure compliance with regulatory standards, industry best practices, and internal IT governance frameworks.
7. Prepare and maintain up-to-date audit working papers in line with applicable internal auditing standards and internal policies and processes. Ensure that audit work meets performance standards and is done within time and budget constraints.
8. Ensure that audit reports are accurate, reliable, objective, clear, concise, constructive, and prepared on a timely basis. Ensure audit recommendations are focused on adding value to the bank’s processes, governance, and control framework.
9. Maintain updated statistics for open and overdue action items along with current status as well as reasons for delay in implementation of remedial action items (where applicable).
10. Collaborate with management to ensure audit findings are addressed in a timely and effective manner.
11. Perform follow-up reviews to monitor the implementation of action plans.
12. Conduct special reviews on the request of Audit Lead / Chief Internal Auditor or Board Audit Committee.

Qualifications and Skills Required:

1. CA / ACCA, CISA certification is a plus.
2. At least 8 years of IT audit experience, ideally in a financial services or banking environment.
3. Deep understanding of IT risk management, cybersecurity frameworks, data protection standards, and regulatory requirements.
4. Strong analytical, problem-solving, and report-writing skills.
5. Ability to communicate effectively with technical and non-technical stakeholders.

Benefits:

• Private Health Insurance
• Training & Development