Job Description
Under Direct supervision of the Chief Internal Auditor, the Internal audit specialist in charge of IT will be responsible of the following:
1. Prepare Risk Based annual IT audit plan
– Identify and evaluate public entities risks in IT auditable areas and prepare a risk-based annual IT audit plan
– Assist government internal auditors in risk based annual IT audit planning;
– Develop and maintain IT Risk Assessment including identifying areas where business units should consider additional
investment and areas internal audit should focus.
2. Carry out IT audits in government institutions
– Plans, supervises IT audit assignments and communicates with auditee departments concerned;
– Conduct audits or lead audit teams in performance of IT audits and reviews of systems, applications and IT processes;
– Supervision of IT internal auditors engaged in the IT audit projects;
– Evaluate information general computing controls and provide value added feedback and test compliance with those controls.
– Gather and critically evaluate evidence and assess the operation of systems to identify risks and associated controls
recommending actions for improving the effectiveness of the risk management process and internal control environment;
– Collects and analyses data, prepares preliminary report, discusses with auditees on audit findings before the issuance of a final
report;
– Direct and participate in special investigations, digital forensics projects, and programs as requested;
– Review IT management policies and procedures such as change management, business continuity planning / disaster recovery
and information security to ensure that controls surrounding these processes are adequate;
– Supervise or lead other IT audit assignments on a regular or permanent basis as assigned by the supervisor;
– Regularly validates audit recommendations from auditee departments as assigned by the supervisor
3. Train and Coach Government Internal Auditors and Audit Committees and Management
– Develop, build & implement tools to analyze data to improve IT audit efficiency and effectiveness. Ultimately be a source for
analytics that business units adopt to provide business insights or for continuous auditing;
– Provide Business and IT management with guidance on IT risk management matters, particularly on application and
infrastructure security;
– Carry out supervision of IT audit activities as assigned by Government Chief Internal Auditor;
– Under the guidance of Government Chief Internal Auditor, carry out quality assurance review to assess the efficiency and
effectiveness of IT audit activity and identify opportunities for improvement;
– In collaboration with directors of Central and Local Government internal audit, develop capacity building plan and propose
continuous professional development program for Government internal auditors and audit committees in IT audit area;
– Participate in development and dissemination of IT internal audit tools, IT audit methodology to Government Internal Auditors as
assigned by Government Chief Internal Auditor;
3. Consolidate Government Internal Audit Activity and Audit Committee reports relating to IT audits.
– Summarize Government Internal Audit activities in a consolidated IT audit report to be submitted on a quarterly basis to the
Government Chief Internal Auditor;
– Summarize Audit committee reports relating to IT in a consolidated report to be submitted, on quarterly basis, to the Government
Chief Internal Auditor
4. Follow up implementation of Internal and External Audit and Audit committee recommendations
– Identify Government public entities with Adverse, disclaimer and qualified audit opinions in IT audits and, in collaboration with
management and internal auditors, assess the root causes and advise on proposed solutions to address the causes to achieve
unqualified audit opinions;
– Under the guidance of Government Chief Internal Auditor and in collaboration with directors of Central and Local Government
Internal Audit, Educate all levels of the Institutions on IT risk management plans;
– Assess the implementation of internal, external IT audits and Audit Committee recommendations and communicate to the
Government Chief Internal Auditor the outstanding recommendations for decision making
5. Monitoring the implementation of risk based annual internal audit plans
– Coordinate and monitor the implementation of risk based annual internal IT audit plans in Government institutions;
– Summarize in a consolidated report, on quarterly basis, the status of risk based annual internal audit plans by Government
Internal Auditors
6. Monitoring the implementation of risk based annual internal audit plans
– Coordinate and monitor the implementation of risk based annual internal IT audit plans in Government institutions;
– Summarize in a consolidated report, on quarterly basis, the status of risk based annual internal audit plans by Government
Internal Auditors
Minimum Qualifications
-
Bachelor’s Degree in Software Engineering
3 Years of relevant experience
-
Bachelor’s Degree in Computer Science
3 Years of relevant experience
-
Bachelor’s Degree in Computer Engineering
3 Years of relevant experience
-
Bachelor’s Degree in Information and Communication Technology
3 Years of relevant experience
-
Bachelor’s Degree in Electronics and Telecommunication Engineering
3 Years of relevant experience
-
Master’s Degree in Software Engineering
1 Year of relevant experience
-
Master’s Degree in Computer Science
1 Year of relevant experience
-
Master’s Degree in Computer Engineering
1 Year of relevant experience
-
Bachelor’s Degree in Information Management Systems,
3 Years of relevant experience
-
Master’s Degree in Information Management Systems,
1 Year of relevant experience
-
Master of Science in Computer Science
1 Year of relevant experience
-
Master’s Degree in Information Communication & Technology
1 Year of relevant experience
-
Master’s Degree in Electronics and Telecommunication Engineering
1 Year of relevant experience
Competency and Key Technical Skills
-
Integrity
-
Strong critical thinking skills and excellent problem solving skills.
-
Inclusiveness
-
Accountability
-
Communication
-
Teamwork
-
Client/citizen focus
-
Professionalism
-
Commitment to continuous learning
-
Knowledge of Rwanda’s ICT policies and strategies
-
Resource management skills
-
Problem solving skills
-
Decision making skills
-
Time management skills
-
Risk management skills
-
Results oriented
-
Digital literacy skills
-
Fluency in Kinyarwanda, English and/or French. Knowledge of all is an added advantage
-
Excellent Knowledge of Microsoft Office products
-
Proficient in basic networking protocols and standards
-
Knowledge of AD, Exchange, VPN, routers, and wireless internet access
-
Knowledge of circuit boards, processors, electronic equipment, and computer hardware and software, including applications and programming
-
Highly proficient with Microsoft Windows operating systems
-
Analytical skills;
-
Negociation skills
-
Knowledge in network equipment debugging technology, hacker attack and defense technology and bandwidth management
-
Proven experience in the provision of secretariat support for governance committees, preferably in the financial sector
-
Knowledge of Equitable and fair treatment of consumers in financial services
-
Knowledge of Financial services disclosure and transparency to the customers
-
Ability to work effectively, flexibly and collaboratively with colleagues within and beyond the immediate work unit, contributing to the achievement of team goals
-
Knowledge Financial education and awareness
-
Knowledge of Protection of consumer assets against fraud, misuse and Protection of consumer data and privacy
