JOB DESCRIPTION:

The Principal IT/IS Audit will assist the Group Head of Internal Audit in providing assurance on the organization’s information technology systems, processes, and controls to ensure that they comply with relevant regulatory, legal, and industry standards and that they operate effectively and efficiently to address risks to the achievement of Cellulant’s strategic and operational objectives.

This position will lead and participate in audits and consulting projects, with the objective of analyzing and assessing the company’s enterprise technology (ET) infrastructure and cybersecurity. They will work both autonomously and with the internal audit team to execute risk-based internal audits. They will serve as the internal audit team’s subject matter expert (SME) in identifying potential vulnerabilities, risks, and weaknesses in IT systems by reviewing their design and implementation, as well as their ongoing operations and maintenance and giving management, stakeholders, and external regulators recommendations for improvements and remediation.

CORE RESPONSIBILITIES:

• Assist the Group Head of Internal Audit in preparation and implementation of the risk-based internal audit plan.
• Assist in the development, maintenance, implementation and update/review of the audit charter, audit manual, relevant policies and other frameworks for the Internal Audit Function.
• Lead the IT/IS Audit team in planning and performing basic to complex internal and enterprise-wide IT, operational and regulatory audits.
• Perform internal audits of the development life cycle, cyber security procedures and third party risk management.
• Identify control deficiencies, assess exposure and significance, propose cost effective recommendations, and prepare internal audit reports reflecting the results of the work performed.
• Perform follow-up on the status of outstanding audit issues.
• Conduct IT risk assessment by understanding business objectives, internal controls, enabling technology, and IT infrastructure
• Perform audit work over various technologies utilized by the company and various IT functions.
• Assess both the design and operating effectiveness of internal controls
• Prioritize and schedule audit tests to be performed, and interact with auditees to obtain the necessary information
• Contribute to identification of department operational efficiencies and changes in auditing operations
• Evaluate controls designed to prevent or detect fraud, including management override of controls
• Prepare and present findings as needed, communicate audit results and recommendations both orally and in writing to the management
• Coordinate with the external audit team.
• Review the back up (physical and electronic) of all internal audit materials for easy retrieval and reference.
• Carry out other responsibilities as may be directed by the Group Head of Internal Audit.

People & Leadership Skills

• Participate in mid-year performance appraisals, annual performance appraisals and monthly 1-1s as per Cellulant performance management cycle.
• Work together to create an environment that fosters teamwork and cooperation
• Attend training sessions offered to continuously improve skills and knowledge.
• Be proactive and self-motivated to achieve set Key Performance Indicators (KPIs).
• Recommend new ways of working to continuously improve efficiency, productivity and enhance both our internal and external customer experience.
• Keep updated on any changes in policies, schedules and product knowledge to the team.
• Attend and participate in team meetings

Leadership roles

• Provide leadership and guidance to the IT/IS Audit team in order to achieve the company’s mission and strategic objectives.
• Ensure all staff are aligned with Cellulant’s values.
• Proactively mentor and/or coach to assess opportunities to improve efficiency and maximize impact
• Prepare and conduct a regular (Quarterly) training program for the IT/IS audit team.

Technical skills:

• Applying IT and Cybersecurity control frameworks including COBIT and ISO 27000
• System and software applications and related controls
• Data analysis and visualization tools
• Networking infrastructure and data center designing including Cloud.

Key performance indicators

• Percentage of audits completed vs planned assignments
• Potential operational efficiencies/process improvement/cost savings generated from implementing IT/IS audit recommendations
• Significance of audit findings
• Number of trainings conducted and improved efficiency in the audit team’s work
• Certifications obtained /number of training hours per year

QUALIFICATIONS & EXPERIENCE:

Education level:

• Minimum of a university degree in an IT-related discipline from a reputable and recognized institution.

Certifications: 

• CRISC, CISA, CISSP, CRISC, CIA, CISM, CGEIT, or other relevant certification
• Membership to relevant professional bodies e.g. ISACA

Experience:

• A minimum of 7 years It or IT/IS Audit experience in high growth organization’s.
• Experience in the payments services sector will be an added advantage

Experience that will count in your favor:

• Progressive career growth within Internal Audit
• Strong problem-solving skills, with the ability to interpret complex data.
• Familiarity with SLA standards and best practices in Fintech and similar industries
• Experience in managing service level agreements (SLAs) to ensure high service quality and reliability.