We are looking for passionate individuals who can perform information systems audits throughout the Bank’s IS Infrastructure Systems and Business Applications including audits of complex computer applications and technological solutions in accordance with the existing lAD Workplan and professional standards on IS auditing, Internal Audit Methodology, processes, procedures and timeframes.

  • Plan and perform risk-based Information Systems audits, in line with Internal Audit Methodology, processes, procedures and timeframes
  • Prepare timely audit reports detailing audit findings and recommendations for improvements on procedures and internal controls.
  • Providing Information Systems security consultancy services for projects undertaken by the Bank ensuring compliance with best practice.
  • Carry out application/website vulnerability assessment and penetration testing
  • To execute the ICT Audit Annual Plan
  • Ensure adequate planning to align IS audits with corporate and business objectives.
  • Performing independent risk assessments of all new and existing systems.
  • Perform general and application control reviews for simple to complex computer information systems.
  • Perform information control reviews of system development standards, operating procedures, system security, programming controls, network and infrastructure controls, back up and disaster recovery and system maintenance.
  • Perform reviews of internal control procedures and security for system under development.
  • Monitor the implementation and operation of defined controls on an ongoing basis.
  • Develop and maintain the skills, knowledge and expertise to make valuable contribution to the Internal Audit team.
  • Any other job as may be delegated or assigned by management from time to time
  • Plan and perform risk-based Information Systems audits, in line with Internal Audit Methodology, processes, procedures and timeframes
  • Prepare timely audit reports detailing audit findings and recommendations for improvements on procedures and internal controls.
  • Providing Information Systems security consultancy services for projects undertaken by the Bank ensuring compliance with best practice.
  • Carry out application/website vulnerability assessment and penetration testing
  • To execute the ICT Audit Annual Plan
  • Ensure adequate planning to align IS audits with corporate and business objectives.
  • Performing independent risk assessments of all new and existing systems.
  • Perform general and application control reviews for simple to complex computer information systems.
  • Perform information control reviews of system development standards, operating procedures, system security, programming controls, network and infrastructure controls, back up and disaster recovery and system maintenance.
  • Perform reviews of internal control procedures and security for system under development.
  • Monitor the implementation and operation of defined controls on an ongoing basis.
  • Develop and maintain the skills, knowledge and expertise to make valuable contribution to the Internal Audit team.
  • Any other job as may be delegated or assigned by management from time to time
  • Relevant professional experience, preferably BSc. Computer Science or IT related degree.
  • IT audit work experience or substantial experience from IT Operations Support or IT Development function.
  • Minimum of 7 years of practical audit experience in a commercial banking environment or a large organization at a senior level and preferably in IT Audit.
  • IT audit or security related qualification (CISA, CEH, CISM, CISSP, CRISC etc.).
  • Experience in auditing operating systems, firewall etc Knowledge
    • Experience in risk-based auditing or risk/ control or IT security activities.
    • Understands the control, regulatory and risk issues relating to information technology.
    • Good understanding of technology and its business application including knowledge of current and emerging issues on technology.
    • Specialist knowledge of either Infrastructure and IT processes or auditing business processes within a Financial Services organization
    • Knowledge in risk assessment & control concepts /methodologies.
    • Knowledge in audit tools & techniques including process mapping, control identification & analysis and design of audit tests.
  • A structured approach to dealing with complex and variable work environments in an independent manner.
  • Ability to balance opposing business requirements.
  • Ability to balance long term and short-term requirements independently
  • Strong evaluation, communication and reporting skills
  • Strong interviewing, negotiating and presentation skills.
  • Able to provide advice and cause/effect evaluation to support business decision making
  • Independent and logical thinker, yet an achiever and implementer
  • Leads by example
  • Good at managing large volumes of information and can add value through management reporting
  • Builds relationships and networks easily
  • Has strong service ethics

How to apply

Applications should be submitted to recruitment@dtbuganda.co.ug on or before 21st June 2022.

DTB is an equal opportunity employer.

PLEASE SHARE TO