Job Summary

To plan, execute and manage audit assignments in accordance with the country and Group Audit plan and relevant policies, procedures and quality standards. The Audit Manager is responsible for the quality of the audit work performed and the efficiency and effectiveness of the audit team.

Job Description

Audit Planning

Participate in the 6+6 audit planning cycle; provide input by taking into account the risk and control profile, business strategy and material risks affecting the business.

Assurance

Plan the delivery of assigned audits to a high quality and in line with Key Performance Indicators as per the methodology. This will include adequate resourcing scheduling, meeting key deliverables in terms of audit timelines and review of audit work to confirm that the minimum requirements as per methodology are met.

Manage the execution of Design Effectiveness Testing (DEA) and Operational Effectiveness Testing (OET) of the audit team in line with methodology requirements and as per the requirements of the QA scorecard.

Ensure audits and issues assurance within Key Performance timelines and resource budget

Leadership and Management

Mentor and coach less experienced team members by providing guidance around the methodology and audit process, and manage the teams that assigned to the audit effectively by delegating audit work to empower each individual team member

Develop a high performing team by embedding formal performance development and informal coaching. Encourage frequent knowledge sharing between team members

Teamwork

Support IA management team to identify, attract, develop and retain talent on an ongoing basis.

Engage proactively with Internal Audit colleagues during assignments and request technical assistance where required and based on knowledge of business areas, provide guidance to other auditors and peers by sharing best practice so that their work meets and sometimes exceeds quality standards.

Relationship Management

Present effectively at stakeholder meetings and forums (e.g.: Risk and Governance Forums etc.) by sharing knowledge and information, including methodology, standards, changes and new developments, with business stakeholders on an ongoing basis, and develop and maintain relationships with accountable stakeholder management on each audit.

Build effective relationships with CoE counterparts and fully engage them during audit reporting

Reporting

Use business knowledge to assess evolving risks, write high quality reports with observations which are insightful, address the root cause, have agreed actions that fully mitigate the risk, support the Issues Assurance process and require no further audit work to support them

Knowledge Management

Continuous upskilling on both technical and other core competencies.

Keeping up to date with industry trends, regulatory changes and professional standards

Develop an in-depth knowledge of the methodology, by attending training sessions and using knowledge gained during audits, use this proactively in executing audit activities.

Based on knowledge of business areas, provide guidance to other auditors and peers by sharing best practice so that their work meets and sometimes exceeds quality standards

Preferred Qualification

B Degree (Computer Science, Information Technology, Cyber Security, Informatics, Statistics or similar technology-related field); and/or

Honours (Computer Science, Information Technology, Cyber Security, Informatics, Statistics or similar technology-related field)

CISA or CISM, CISSP or international equivalent certification.

CIA (Levels 1,2 or 3) and CPA (T) or ACCA will be an advantage

Preferred Experience

Audit roles – experience in risk-based auditing or risk/control activities.

Relevant professional qualifications (e.g. CISA)

Relevant Financial services experience gained through auditing or line management

Practical understanding of relevant regulatory environment

Proven track record of high performance in previous roles

Experience in auditing at senior level for at least 5 years.

Knowledge and Skills

Minimum of 5 years’ experience in performing technology and cyber related work Internal/External audit or commensurate experience in a major financial institution

5 years’ experience in Technology and Cyber Risk Based Auditing or Risk/Control activities

3 Years experience in managing a team

Experience in drafting test strategies and testing IT general controls, application controls, cyber and information security risks and controls.

Ability to articulate complex issues clearly

Displays good knowledge of Technology and Cyber in the Financial Industry including related Banking processes

Awareness of regulatory and compliance environment Level

Manage time, resources and budget effectively Level

Industry and product knowledge

Absa Bank Kenya is an equal opportunity, affirmative action employer. Preference will be given to suitable candidates from designated groups whose appointments will contribute towards the achievement of equitable demographic representation of our workforce profile and add to the diversity of the Bank.

• Participate in the 6+6 audit planning cycle; provide input by taking into account the risk and control profile, business strategy and material risks affecting the business.
• Plan the delivery of assigned audits to a high quality and in line with Key Performance Indicators as per the methodology. This will include adequate resourcing scheduling, meeting key deliverables in terms of audit timelines and review of audit work to confirm that the minimum requirements as per methodology are met.
• Manage the execution of Design Effectiveness Testing (DEA) and Operational Effectiveness Testing (OET) of the audit team in line with methodology requirements and as per the requirements of the QA scorecard.
• Ensure audits and issues assurance within Key Performance timelines and resource budget
• Mentor and coach less experienced team members by providing guidance around the methodology and audit process, and manage the teams that assigned to the audit effectively by delegating audit work to empower each individual team member
• Develop a high performing team by embedding formal performance development and informal coaching. Encourage frequent knowledge sharing between team members
• Support IA management team to identify, attract, develop and retain talent on an ongoing basis.
• Engage proactively with Internal Audit colleagues during assignments and request technical assistance where required and based on knowledge of business areas, provide guidance to other auditors and peers by sharing best practice so that their work meets and sometimes exceeds quality standards.
• Present effectively at stakeholder meetings and forums (e.g.: Risk and Governance Forums etc.) by sharing knowledge and information, including methodology, standards, changes and new developments, with business stakeholders on an ongoing basis, and develop and maintain relationships with accountable stakeholder management on each audit.
• Build effective relationships with CoE counterparts and fully engage them during audit reporting
• Use business knowledge to assess evolving risks, write high quality reports with observations which are insightful, address the root cause, have agreed actions that fully mitigate the risk, support the Issues Assurance process and require no further audit work to support them
• Continuous upskilling on both technical and other core competencies.
• Keeping up to date with industry trends, regulatory changes and professional standards
• Develop an in-depth knowledge of the methodology, by attending training sessions and using knowledge gained during audits, use this proactively in executing audit activities.
• Based on knowledge of business areas, provide guidance to other auditors and peers by sharing best practice so that their work meets and sometimes exceeds quality standards

• Ability to articulate complex issues clearly
• Displays good knowledge of Technology and Cyber in the Financial Industry including related Banking processes
• Awareness of regulatory and compliance environment Level
• Manage time, resources and budget effectively Level
• Industry and product knowledge

• B Degree (Computer Science, Information Technology, Cyber Security, Informatics, Statistics or similar technology-related field); and/or
• Honours (Computer Science, Information Technology, Cyber Security, Informatics, Statistics or similar technology-related field)
• CISA or CISM, CISSP or international equivalent certification.
• CIA (Levels 1,2 or 3) and CPA (T) or ACCA will be an advantage
• Audit roles – experience in risk-based auditing or risk/control activities.
• Relevant professional qualifications (e.g. CISA)
• Relevant Financial services experience gained through auditing or line management
• Practical understanding of relevant regulatory environment
• Proven track record of high performance in previous roles
• Experience in auditing at senior level for at least 5 years.
• Minimum of 5 years’ experience in performing technology and cyber related work Internal/External audit or commensurate experience in a major financial institution
• 5 years’ experience in Technology and Cyber Risk Based Auditing or Risk/Control activities
• 3 Years experience in managing a team
• Experience in drafting test strategies and testing IT general controls, application controls, cyber and information security risks and controls.