Job Description

Job Title: Manager – Technology Audits

Reporting to: Head Internal Audit

Division – Internal Audit

Mission/ Core purpose of the Job

To manage the technology, security and networks audit sub-function, driving the internal audit program framework, process innovation and meaningful analytics. To achieve excellence and effectiveness of overall internal information security management through process and system audits (IT systems, network and security) ensuring alignment with Internal Audit strategy. Acting as an expert in the field, this role provides support to the Head Internal Audit in developing the overall technology, security and networks audit framework, and continuous improvement.

Responsibilities

Main Job Functions:

• The Manager: Technology Audits role will be accountable to achieve the following objectives:
• Support creation of sub-functional strategy in line with overarching divisional goals.
• Support the effective alignment of sub-functional strategy by means of providing direction, structure, business plans and support.
• Manage technology, security and networks audit sub function, ensuring the effectiveness of internal controls on information security, quality of work, and audit reports and analytics, in line with internal audit standards and methodologies, with full adherence to the internal audit framework.
• Lead and manage complex internal audits on IT systems and networks, review inconsistencies and advise on required changes/ enhancements to improve technological risk management, control and governance processes, in line with company’s strategic objectives and best practice guidelines.
• Assess the likely/ projected legal implications and ramifications of IT systems and network audits.
• Support the Head IA in the consolidation, review and sign off on all IT system, security and network audit reports for submission to top management and MTN Mobile Money Uganda Audit Committee.
• Ensure cost effective operation of the internal IT system, security and network audit sub-function by driving excellence and effectiveness of the internal audit framework, which will increase internal controls and manage risk, which, due to the nature of the business, is changing constantly.
• Identify and drive, where appropriate, opportunities for cost saving initiatives without compromising quality and effectiveness of the framework.
• Provide direction to staff, ensure compliance with the standards for internal audit.
• Report to management on IT systems and network audit results, highlighting new internal and external high level risks, cost controls and recommendations for improvements within the Internal Audit department.
• Provide input into an annual risk-based internal audit plan with regards to IT systems and the network in order to ensure adequate quality assurance over risk management.
• Provide expertise, advice and support to management by providing technical insights on new information security risks.
• Provide assurance to management on the effectiveness of the internal controls over information security, internal processes and systems related to both virtual, as well as physical technology assets.

Qualifications

Education:

Bachelor’s in engineering (B. Eng) / BSc. Computer Science/Information Technology

CISA / CISSP / CISM/ CDPSE/ CFE

Experience:

• Minimum 5 years’ experience in internal audit (specifically technology audits), with experience in supervising others advantageous
• Experience working in a medium – large technology-based organization.

Competencies:

• Conceptual Thinker, Problem Solver, Improvement Driver.
• Culture and Change Champion, Supportive People Manager, Relationship Manager.
• Results Achiever, Operationally Astute, Customer Focused.

NB: Presentation of false academic documents and certification will lead to criminal prosecution. Any form of canvassing will lead to automatic disqualification. Should you not hear from us within fourteen (14) days from the closing date of this advertisement, you may consider your application to be unsuccessful.

Female candidates are strongly encouraged to apply.

• Support creation of sub-functional strategy in line with overarching divisional goals.
• Support the effective alignment of sub-functional strategy by means of providing direction, structure, business plans and support.
• Manage technology, security and networks audit sub function, ensuring the effectiveness of internal controls on information security, quality of work, and audit reports and analytics, in line with internal audit standards and methodologies, with full adherence to the internal audit framework.
• Lead and manage complex internal audits on IT systems and networks, review inconsistencies and advise on required changes/ enhancements to improve technological risk management, control and governance processes, in line with company’s strategic objectives and best practice guidelines.
• Assess the likely/ projected legal implications and ramifications of IT systems and network audits.
• Support the Head IA in the consolidation, review and sign off on all IT system, security and network audit reports for submission to top management and MTN Mobile Money Uganda Audit Committee.
• Ensure cost effective operation of the internal IT system, security and network audit sub-function by driving excellence and effectiveness of the internal audit framework, which will increase internal controls and manage risk, which, due to the nature of the business, is changing constantly.
• Identify and drive, where appropriate, opportunities for cost saving initiatives without compromising quality and effectiveness of the framework.
• Provide direction to staff, ensure compliance with the standards for internal audit.
• Report to management on IT systems and network audit results, highlighting new internal and external high level risks, cost controls and recommendations for improvements within the Internal Audit department.
• Provide input into an annual risk-based internal audit plan with regards to IT systems and the network in order to ensure adequate quality assurance over risk management.
• Provide expertise, advice and support to management by providing technical insights on new information security risks.
• Provide assurance to management on the effectiveness of the internal controls over information security, internal processes and systems related to both virtual, as well as physical technology assets.

• Conceptual Thinker
• Problem Solver
• Improvement Driver
• Culture and Change Champion
• Supportive People Manager
• Relationship Manager
• Results Achiever
• Operationally Astute
• Customer Focused

• Bachelor’s in engineering (B. Eng) / BSc. Computer Science/Information Technology
• CISA / CISSP / CISM/ CDPSE/ CFE