Information Systems Auditor

Mission Brief:

Responsibilities

• Review ICT policies and procedures, identify control weaknesses and set up standard operating procedures to address the identified weaknesses and ensure adequacy..
• Review the group’s ICT hardware and software to ensure acquisition and deployment, upgrade and disposal process are in line with best practice and policies and ensure that ICT risks are properly identified and controls embedded to mitigate the risks.
• Review information system application servers, backups, ICT infrastructure, network, Business Continuity plan, and Disaster Recovery Plan to ensure compliance to policy and best practice.
• Assess the entire ICT environment from application systems and business protocols to determine whether business objectives are being attained in a secure environment.
• Test and identify network and system vulnerabilities and create counteractive strategies to protect the network.
• Test ICT general controls within the group to ensure confidentiality and access management are well managed.
• Perform continuous reviews and report on cyber risks and controls of the ICT systems to the HOD Audit.
• Provide assurance on the protection of Information Assets and security of the entire ICT environment within the group including the infrastructure.
• Prepare and submit the audit program to the HOD Audit including risk assessment, evaluation of control environment, and formulation of audit objectives, designing audit procedures, information gathering, and evidence analysis to ensure quality risk-based audits.
• Participate in the preparation of the annual audit strategy and plan in line with key risk areas and strategic priorities of the Company in consultation with the HOD Audit.
• Conduct integrated audit in collaboration with the business processes auditors to provide assurance of the business environment considering the ICT aspect.
• Carry out routine and special audit assignments as requested from time to time and develop report on findings and recommendations that inform on action points.
• Carry out audit follow ups when due, based on Board resolutions & management action points and develop reports on implementation status.
• Document the benefits, strength, weaknesses and improvement measures of organisational information system infrastructure.
• Consult with and advise management and staff on various operational issues related to computerised
• information systems and on general business operations as needed.

Knowledge, Skills, Abilities & Attributes.

• Bachelor’s degree in Computer Science, Business Information Technology, Information Technology or related field from a recognized university.
• Certified Information Systems Auditor (CISA) is an added advantage.
• Certified Internal Auditor (CIA) or Certified Public Accountant (CPA) desirable
• At Least three years of experience.
• Knowledge of current technological developments/trends.
• Ability to interpret system, financial and accounting data.
• Have a keen eye for details, gather data, compile information and prepare reports.
• High integrity and be of unquestionable character.
• Knowledge of Restaurant/Hotel auditing policies and standard procedures.
• Knowledge of Restaurants/ Hotel Business Information Systems including Opera, Sage People, Symphony and Micros Fidelio- Materials Controls is an added advantage.

Are you interested in this position and do you meet the minimum requirements? Apply by sending an email with your CV and a convincing cover letter to human.resources@tamarind.co.ke

Due to the high volume of applications received only shortlisted candidates will be contacted. Please do not hesitate to contact us by e-mail
human.resources@tamarind.co.ke