Manager - Technology Audits.Bayobab

The Manager Technology Audit is responsible for carrying out medium/high priority/risk internal audit work on the Technology processes and systems as assigned, in line with the audit plan and the standards and methodologies set by Internal Audit and Forensics Function.

Key Performance Areas: Core, essential responsibilities / outputs of the position (KPA's)

The Manager: Technology Audits – Bayobab role will be accountable to achieve the following objectives:

- Create a holistic picture of each project to provide context for the findings, and implement procedures as required to perform Technology, Security and Networks audits.

- Manage expertise and resource planning and requirements for Technology, Security and Networks Audit assignments, special assignments and management requests.

- Manage the audit assignments’ progress and escalate any roadblocks to completion to the Senior Manager for intervention and resolution.

- Ensure that IA methodology as prescribed by Group Internal Audit is strictly adhered to, including identifying and defining issues, developing criteria, reviewing and analyzing evidence, and documenting technology, Security and Networks processes and procedures.

- Oversee and manage the work of the audit staff in conducting interviews, reviewing documents, developing and administering audit surveys, composing summary memos, and preparing working papers or audit operations.

- Implement the audit program, recognize control weaknesses, assess the materiality of these weaknesses, and relate them back to the scope and objectives of the audit. 

- Review the audit programs to ensure the appropriate testing mechanisms. 

- Review and manage the work of the audit staff in identification, development, and documentation of audit issues and recommendations for improvement, as guided by Senior Manager Technology, Security and Networks. 

- Develop recommendations for bringing programs and operations into compliance with goals and objectives and write up reports to document findings. 

- Communicate the results, findings and recommendations of audit projects through written reports and face-to - face presentations on a timely basis to the Senior Manager. 

- Ensure that the audit is carried out on the eGRC system in line with process and methodology as mandated by the Group Internal Audit and Forensics function. 

- Follow up on the implementation of audit recommendations in a timely manner. 

- Perform control adequacy and effectiveness reviews of business processes. 

- Interact with staff, Audit Managers, General Managers, external consultants, and when necessary, with Executive Management to obtain and/or communicate relevant information to achieve the objective/s of the Technology, Security and Networks Audit function. 

- Maintain all Bayobab and professional ethical standards and ensure internal audit activities are carried out in compliance with The International Standards for the Professional Practice of Internal Auditing (Standards) and IIA Code of Ethics. 

- Support the Senior Manager IAFS in coordinating with the External Auditors where needed and facilitate their fieldwork within Bayobab. 

- Report on an ad-hoc basis on specific projects as and when necessary.

Key Deliverables 

- Actively ensure internal audit processes are in line with the Group Internal Audit methodologies and IIA standards. 

- Reporting on Audit outcomes. 

Role Dependencies 

- Active support from the Senior Manager: IAFS 

- Understanding of the technology and business contexts and the risks associated with these across Bayobab Group, Bayobab FibreCos & related entities

 - Intra-functional collaborations with Risk and Compliance. 

- Bayobab policies and procedures. 

- Alignment with risk management initiatives.

Job Requirements (Education, Experience and Competencies)

Education:

- 4-year Information Technology / Engineering/ Information Systems/ Business Science (or related) degree.

- Chartered Accountant/Certified Internal Auditor is advantageous.

- Professional qualification in Information Systems Auditing is advantageous (Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP) or Certified in Risk and Information Systems Control (CRISC))) is necessary.

- English and French (as an advantage).

Experience:

- Minimum of 5 years’ experience in an area of specialization coupled with supervising / managing others.

- Minimum 5 years’ experience in technology audits, investigations, and fraud risk management.

- Analytical skills and proficient in the use of CAATs (i.e., ACL, IDEA).

- Work across diverse cultures and geographies is an advantage.

- Telco audit and assurance experience would be an added advantage.

Competencies:

- Knowledge of governance, risk and control methodologies and frameworks such as COSO, COBIT and Auditing Standards etc.

- Conceptual Thinker, Problem Solver, Improvement Driver

- Culture and Change Champion, Supportive People Manager, Relationship Manager

- Results Achiever, Operationally Astute

- Research & Development

- Politically astute

- Data analytics

- Project management