Executive – Information Security Audit

Key responsibilities

1. Conduct periodic internal audits of IT systems, infrastructure, and applications to assess risks and identify vulnerabilities.
2. Design and execute information systems audits to assess the effectiveness of IT governance and the adequacy of internal controls within the organization’s technology environment.
3. Prepare detailed audit reports with clear findings, risk ratings, and actionable recommendations.
4. Carry out IT risk evaluations to identify potential threats in technology-driven processes.
5. Develop audit reports that highlight findings along with actionable insights for improvement.
6. Work closely with stakeholders across departments to ensure corrective actions are implemented effectively.
7. Support external audits and regulatory assessments.
8. Stay updated on evolving cybersecurity trends, threats, and compliance requirements.

Requirements

1. Bachelor’s degree in computer science, information technology, information security, cyber security or related field.
2. Minimum of 5 years of overall professional experience, including at least 2 years in information security audits / IT risk management preferably within the finance sector.
3. Full or part qualification with CISA, CISM, ISO 27001 lead auditor would be an added advantage.
4. Familiarity with security tools, audit techniques, and regulatory compliance.
5. Strong analytical, problem-solving, and communication skills.

When applying

[email protected]