Senior Manager, Information Systems Audit

KEY RESPONSIBILITIES

• Provide leadership in individual Information System / Technology related audit and advisory assignments.
• Conduct Technology and Information Systems risk assessments to develop the annual Group IS audit plan.
• Lead the planning, execution, and reporting of IT Governance, IT general and IT application control reviews on information systems and Technology environment to give assurance on the effectiveness and efficiency of the control environment, and compliance to KCB Group policies, International Standards (ISO 27001, ISO 22301, PCI DSS, NIST 800 series, etc.), and Regulatory requirements and guidelines.
• Undertake data analytics-based audit procedures as part of IT application reviews to test the completeness, accuracy, and validity of master and transactional data using CAATs tools and submit to the continuous auditing team for subsequent automation.
• Perform ongoing project assurance and post implementation reviews on Technology related projects.
• Undertake preparation of audit and advisory reports and present to the area management the results, recommendations, and conclusions of the IS audit and advisory reviews.
• Reviews the results of audit work in accordance with internal audit guidelines and the Institute of Internal Auditors (IIA) standards.
• Follow up and verify closure of IS audit issue action plans as per stakeholder engagement agreements and track to completion within agreed timelines.
• Share knowledge, skills, and experience with team members.
• Maintain respectful and effective communications and relationships with key stakeholders.

MINIMUM POSITION REQUIREMENTS
 

1. Academic & Professional

Particulars Detail Specific Field or Qualification 

Need

Type[1]

Education  Bachelor’s Degree Information Technology, Electrical Engineering, Computer Science, Business Intelligence & Data Analytics  RQ Professional Qualifications CISA / CISM / CISSP Certifications RQ   Master’s Degree IT, MBA, Computer Science, Business Intelligence & Data Analytics AA  

 

1. Experience

Total Minimum No of Years’ Experience Required 8   Detail

Minimum

No of Years

Need Type[2]

1. Experience IT Security and/or IT Audit

8 ES

1. IT Governance, IT project assurance, and Information Systems Audits Experience 

5 ES

1. Experience in data analytics, data extraction, data transformation, and scripting experience

5 ES

1. Stakeholder management

5 ES

1. People management

2 DE About UsKCB Group is registered as a non-operating holding company which started operations as a licensed banking institution with effect from January 1, 2016. The holding company oversees KCB Kenya – incorporated with effect from January 1, 2016 – and all KCB’s regional units in Uganda, Tanzania, Rwanda, Burundi, Ethiopia and South Sudan. It also owns KCB Insurance Agency, KCB Capital, KCB Foundation, National Bank of Kenya, and all associated companies. The holding company was set up to among other things to enhance the Group’s capacity to access unrestricted capital and also enable investment in new ventures outside banking regulations, achieve operational and strategic autonomy for the Group’s operating entities and enhance corporate governance across the Group and oversight in the management of subsidiaries. Related documentation:  Group Name Change,   Name Change Certificate,  KCB Advise on Non-Operating Holding Company,  KCB Group Structure,  Kenya Gazette Notice.