Information Systems Auditor

Job Description

• To carry out IT and cyber security audits and investigate across technical divisions and various functional areas within MTNIRANCELL, i.e., reporting applications, systems, security, and infrastructures audit based on MTN group methodology.
• To perform general application control (ITGC) reviews for simple to complex information systems.
• To analyze information security controls to identify vulnerabilities in applications, infrastructure, and operating systems.
• To examine internal IT controls, evaluate the design and operational effectiveness, determine risk exposure, and develop remediation strategies.
• To facilitate the use of data analysis tools within the Internal Audit function.
• To collaborate with other teams of A&R to foster a culture of Information systems security risk awareness within the company.
• To develop and maintain productive working relationships with clients through individual contacts and group meetings to better implement audit assignments.
• To assess the risks inherent in the company’s information systems and recommend measures to mitigate them.
• To contribute to designing an information system risk-based audit approach.
• To analyze and evaluate IT processes to assess internal controls and minimize risks.
• To monitor the operation of identified controls and recommendations on an ongoing basis.
• To identify significant information systems risks associated with the company’s strategic objectives.
• To provide input into the overall annual audit plan according to the strategic objectives and the associated risks.
• To ensure business compliance with audit methodology and laid down standards and make recommendations where changes are required.
• To advise management on issues (findings) on risk management, internal controls, and corporate governance processes.
• To incorporate knowledge gained from consulting engagements into audit assignments and overall audit plans.
• To perform regular follow-ups on the status of outstanding information systems audit recommendations.
• To perform management`s ad-hoc requests timely and accurate.

Requirements:

• Bachelor’s degree or higher education in IT/Software Engineering, or Computer Science.
• Additional related qualifications and certifications, e.g., telecom-related certificates or CISSP, CISM, CISA, CIA, CCNP, ITIL, and COBIT, would be an added advantage.
• Fluent in English.
• At least 3 years of full-time experience in IT operations, cybersecurity, software development, data analysis, and other skills related to the specified duties and responsibilities.
• Program evaluation, including experience in conducting information technology, audits in an international organization.
• Proficient in using company standard software in the related field.