Internal Auditor

Job TypeFull Time

QualificationBA/BSc/HND

Experience4 - 6 years

LocationNairobi

Job FieldFinance / Accounting / Audit

Job Purpose:

Reporting to the Holdings Assurance Manager the role holder will be responsible for conducting internal audits in line with the audit plan or as requested by the board or audit committee.

Key responsibilities:

• Identify and critically evaluate elements of governance and risk management in the service, design appropriate risk management and mitigation strategies for implementation.
• Plan and execute internal audits in accordance with the international standards on professional practice of internal audit and department’s audits methodology.
• Develop with the Holdings Assurance Manager, detailed audit programmes based on the documented procedures and best practice, for each identified audit project, giving special attention to potential risk areas.
• Carry out detailed audit tests on Group’s operations based on standard audit programmes in accordance with the approved Annual Internal Audit Plan. Be agile in planning and execution of audits.
• Perform and control the full audit cycle including risk management and control management over operations’ effectiveness, financial reliability and compliance with all applicable directives and regulations.
• Ensure detailed audit tests are performed on all the Group’s operations based on Standard audit programmes in accordance with the approved annual audit plan. This includes recommendations to improve efficiency. The job holder may change the scope of the audit if actual circumstances in the field so demand.
• Independently determine internal audit scope for audit assignments.
• Engage and maintain open communication with management and other stakeholders.
• Develop new continuous improvement initiatives, evaluate the adequacy of internal control processes.
• Gather adequate audit evidence to support findings and suggestions for improvement.
• The jobholder will constantly discuss the findings of the business so that only unresolved issues appear in the final report.
• Review and document existing accounting, administrative and internal control systems for adequacy and effectiveness and making recommendations for improvement. This will cover the Group operations and call for a thorough understanding of all the Group’s operations.
• Verifying compliance with all the relevant legislation and regulatory requirements.
• Deliver on performance requirements as in the departments’ strategy, balanced and personal scorecard.
• Integrate data analytics into audit planning, execution and reporting to enhance quality of assurance.
• Evaluate technology controls, cybersecurity posture, and IT governance across business units.
• Conduct themed audits focusing on emerging risk and control implementations in such areas as digital transformation, cloud security, ESG data integrity, and operational resilience.
• Apply automated testing, continuous monitoring and data-driven insights to strengthen risk management.

Knowledge, experience and qualifications required:

• Bachelor’s degree in relevant field.
• CPA (K) certified is a requirement.
• Certified Internal Auditor (CIA), Certified Information Systems Analyst (CISA) and Certified Financial Analyst.
• (CFA) are an added advantage.
• 4-6 years working experience in an Audit related field.
• Proficiency in audit data analytics tools (e.g., ACL, IDEA, Power BI).
• A general understanding of IT general controls, cybersecurity frameworks, and technology risk management.
• Ability to design and execute thematic audit approaches aligned with strategic risks.

• Identify and critically evaluate elements of governance and risk management in the service, design appropriate risk management and mitigation strategies for implementation.
• Plan and execute internal audits in accordance with the international standards on professional practice of internal audit and department’s audits methodology.
• Develop with the Holdings Assurance Manager, detailed audit programmes based on the documented procedures and best practice, for each identified audit project, giving special attention to potential risk areas.
• Carry out detailed audit tests on Group’s operations based on standard audit programmes in accordance with the approved Annual Internal Audit Plan. Be agile in planning and execution of audits.
• Perform and control the full audit cycle including risk management and control management over operations’ effectiveness, financial reliability and compliance with all applicable directives and regulations.
• Ensure detailed audit tests are performed on all the Group’s operations based on Standard audit programmes in accordance with the approved annual audit plan. This includes recommendations to improve efficiency. The job holder may change the scope of the audit if actual circumstances in the field so demand.
• Independently determine internal audit scope for audit assignments.
• Engage and maintain open communication with management and other stakeholders.
• Develop new continuous improvement initiatives, evaluate the adequacy of internal control processes.
• Gather adequate audit evidence to support findings and suggestions for improvement.
• The jobholder will constantly discuss the findings of the business so that only unresolved issues appear in the final report.
• Review and document existing accounting, administrative and internal control systems for adequacy and effectiveness and making recommendations for improvement. This will cover the Group operations and call for a thorough understanding of all the Group’s operations.
• Verifying compliance with all the relevant legislation and regulatory requirements.
• Deliver on performance requirements as in the departments’ strategy, balanced and personal scorecard.
• Integrate data analytics into audit planning, execution and reporting to enhance quality of assurance.
• Evaluate technology controls, cybersecurity posture, and IT governance across business units.
• Conduct themed audits focusing on emerging risk and control implementations in such areas as digital transformation, cloud security, ESG data integrity, and operational resilience.
• Apply automated testing, continuous monitoring and data-driven insights to strengthen risk management.

• Proficiency in audit data analytics tools (e.g., ACL, IDEA, Power BI).
• A general understanding of IT general controls, cybersecurity frameworks, and technology risk management.
• Ability to design and execute thematic audit approaches aligned with strategic risks.

• Bachelor’s degree in relevant field.
• CPA (K) certified is a requirement.
• Certified Internal Auditor (CIA), Certified Information Systems Analyst (CISA) and Certified Financial Analyst.
• (CFA) are an added advantage.