• Performing independent risk assessments of all new and existing systems
• Plan and perform risk-based Information Systems audits, in line with Internal Audit Methodology, processes, procedures and timeframes.

• Prepare timely audit reports detailing audit findings and recommendations for improvements on procedures and internal controls.
• Providing Information Systems consultancy services for projects undertaken by the Bank ensuring compliance with best practice.

• Carry out application/website vulnerability assessment and penetration testing.
• To execute the ICT Audit Annual Plan as approved by Board Audit Committee.
• Ensure adequate planning to align IS audits with corporate and business objectives.
• Perform general and application control reviews for simple to complex computer information systems.

• Perform information control reviews of system development standards, operating procedures, system security, programming controls, network and infrastructure controls, back up and disaster recovery and system maintenance.

• Perform reviews of internal control procedures and security for system under development.
• Monitor the implementation and operation of defined controls on an ongoing basis.
• Develop and maintain the skills, knowledge and expertise to make valuable contribution to the Internal
• Audit team. Train non IT auditors on basic IT tests and controls
• Write reports on audits conducted
• Follow up on outstanding audit issues for closure.
• Any other job as may be delegated or assigned by management from time to time

Key performance measures
Increase the efficiency with which audits are conducted whilst consistently meeting high quality standards.
To help ensure that technical and business knowledge is shared effectively and that the skills available are applied in an optimum manner
• Average number of days to finish an audit assignment
• Internal Customer service satisfaction rating
• IT risk minimization as a result of process improvement recommendations
• Number of Audit working papers fully prepared in the Audit Teammate System
• Pre-Audit Activities & Engagement Planning