Head Of Internal Audit – ICT and Data Analytics
Job Location :
Head Office
Job Purpose:
Responsible for providing leadership and overseeing of internal audit
for Information and Communication Technology (ICT), Cyber security and
Data analytics audits on achieving the purpose and objectives of
Internal Audit Function (IAF).
Main Responsibilities:
Strategic Focus
Recommended:
Working with the Chief Internal Auditor (CIA) on developing and
execution of a risk based annual audit plan approved by the Board,
reporting and follow up of implementation of audit recommendations for
bank’s internal control improvement. The role must provide assurance on
design and effectiveness of internal controls, IT risk management
framework, cyber security and governance processes relating to ICT
operations are adequate and effective and the bank’s ICT policies &
procedures, state laws, regulations regarding privacy and security in
data processing are adhered to.
Develop and execute the Audit strategy on the Data analytics automation
& robotics (AI) and continuous auditing of critical bank’s processes
for effective real time monitoring and reporting to Management and
Board.
Develop and execution of a risk based annual internal audit work plans
and programs for IT audits and Data analytics audits and programs which
is approved by the Board.
Develop and execution on the cyber security audit strategy and use of
review tools for continuous monitoring and vulnerability assessment
assurance on the management cyber security resilience.
Overseeing, planning, and scoping of audit assignments relating to ICT
operations, Cyber Security, Data Analytics, Projects and any other areas
assigned, determining engagement scope & objectives, conducting
risk assessment (including fraud risk assessment), allocating audit
resources, defining deadlines and ensuring a comprehensive and
appropriate terms of reference is set for each review.
Leadership and People Management Focus
Coaching and providing training that enhances auditor’s knowledge on
ICT risks and use of IT tools and analytics, department budget planning
and control, also responsible for another stakeholder’s management.
Manage the Audit team, hierarchically and functionally, supporting the
direct reports in their professional development through mentoring and
coaching, providing constructive feedback including formal performance
management. Reach the results through the team; developing and executing
the department’s strategy and plan.
Lead discussions with business leaders regarding audit observations and root causes of issues, consulting the CIA.
Consult with Internal Audit Function (IAF) management, risk teams,
internal auditors, or the business to identify high risk areas that
should be subjected to data analytics on regular basis.
Provide support to internal auditors in using computer-assisted audit techniques.
Review and issue audit reports that meet the required standards for
reporting to management and prepare oral or written presentation on
those issues at the request of management or at his/her own initiative.
Supervise support on automated audit tools used in the department.
Ensure full compliance, provide oversight as well as monitor the
implementation of various consumer protection requirements across
business area/Unit.
Read Also:
Operations Focus
Carry out investigations and special audits as requested by management, Board, or red flags noted by auditors.
Stakeholder management within the bank, Bank of Tanzania, and external auditors/consultants
Departmental Budgeting planning, implementation, and cost control
Ensure that audits are carried out in line with International Standards
for the Professional Practice of Internal Auditing as issued from time
to time by the Institute of Internal Auditors as well as those issued by
Information Systems Audit and Controls Association (ISACA).
Provide guidance to Audit Managers /Auditors during audit assignments
with emphasis on process understanding, risk identification and
assessment, root cause identification and development of recommendations
that address the root causes.
Perform follow-up audit reviews to determine the extent to which root
causes of issues observed have been closed and supported with
sufficient, reliable, and relevant evidence.
Stay abreast of the latest developments in ICT that impact the ICT risks
and cyber security in the bank and the possibilities to investigate
using ICT.
Identify the relevant operating risks that may affect the bank and
assess their likelihood of occurrence and the potential impact on the
business.
Review of ICT projects executed by management and appraise on the
identified risks and controls and how has been mitigated and recommend
appropriate actions for management.
Review audit findings with auditors, appraise the management and prepare
report for CIA to the Board Audit Committee raised by external
auditors.
Responsible for regular extraction and analytics of data from critical
systems of the bank in order to identify control weaknesses for
corrective action and provide business Insights and foresight for
appropriate management decisions.
Ensure that documentation throughout the audit lifecycle (scoping,
understanding processes, identifying risks and controls, assessing
controls, and identifying issues) is accurate, reflective of work
performed and supports conclusions drawn.
Ensure audit tools are effectively used to bring efficiency and effectiveness in the audit process.
Represent the IAF on various projects that aim at improving risk
management, governance and controls surrounding ICT systems in the bank.
Ensure full compliance, provide oversight as well as monitor the
implementation of various consumer protection requirements across
business area/Unit.
Knowledge and Skills:
Ability to exercise critical thinking and professional skepticism in the audit process.
Solid knowledge of applying internal audit standards (IPPF) by the
Institute of Internal Auditors and ISACA Framework to perform value
adding internal audit services.
Deep understanding of fraud risk assessment and evaluation of control
adequacy in either detecting or preventing fraud incidences in an IT
environment.
Knowledge of risks and controls of a bank as well as banking regulations
Analytical mind with the ability to interpret key data/facts.
Eye for detail in checks and balances, rules and processes, risk, and governance.
IT Project management and projects life cycle knowledge
Mastery of using and Knowledge of ICT and audit tools such as data
analytics software such as ACL Analytics, DAST & NAST tools, Qualys
or Nexpose and audit management software such as teammate, Microsoft
vision etc.
A person with integrity, objective mind, and leadership skills ability to influence and motivate teams towards a common goal.
Excellent interpersonal skills and ability to work effectively with colleagues and other management teams.
Multi stakeholder management report to BARCC, Board, regulator, and external auditors
Firm and decisive with ability to negotiate and influence senior/middle managers to facilitate change and improvement.
Ability to communicate at all levels in the bank and external stakeholders such as external auditors and consultants.
A personal commitment to, and good understanding of, diversity and equalities in the workplace.
Qualifications and Experience:
Bachelor’s degree in IT and Computer science from a recognized university
Professional Certification in IT auditing or Cyber security, Data
Analytics, or accounting qualification
Read Also:
i.e., CIA, ACPA, CISA, CISM, PMO,
CPA (T), ACCA or equivalent is a Must.
A Master’s degree is an added advantage.
At least 7 years’ experience in IT audits, out of which 4 should be at
managerial level in a bank or an audit firm responsible for financial
institutions.
NMB Bank Plc is an Equal Opportunity Employer. We are committed to
creating a diverse environment and achieving a gender balanced
workforce.
Female candidates and people living with disabilities are strongly encouraged to apply for this position.
NMB Bank Plc does not charge any fee in connection with the application or recruitment process. Should you receive a solicitation for the payment of a fee, please disregard it.
Job closing date : 23-Jan-2024
NOC Infrastructure Administrator (Fixed term – 2 years) (2 Position(s))
Job Location :
Head Office
Job Purpose:
24/7 Proactively monitor, conduct level 1 troubleshooting, and escalate
all incidents and problems raised within Network operation center (NOC)
which will or has the potential to degrade bank services, and ensure
service delivery meets and exceeds business customers expectations by
maintaining the value of the services.
Main Responsibilities:
Perform and coordinate root cause analysis of incidents and share RCA/incident reports.
Responsible for daily proactive monitoring, conducting first level
troubleshooting, resolution and escalation of all issues pertaining to
Data Centre & DR infrastructure, Core banking services, Core
network, branch connectivity, ATM/POS, Self-service channels, power
& cooling utilities at Head Office and branches.
Responsible for managing all incidents and problems logged regarding
network, self-service, power, and cooling utilities from branches &
Head Office ensuring SLA(s) and customer expectations are met.
Preparation of daily, weekly, and monthly performance statistics for the
network and data center infrastructure, status reports, and graphical
aids for management.
Maintain current configuration on existing NOC infrastructure including
out of the box reports provide required visibility report to management.
Automate and consolidate all manual morning health check reports.
First level support for all self-service channels and services ensures proper escalation to second level support.
Maintain and optimize NOC infrastructure licenses/Infrastructure ensure all business-critical services are monitored.
Knowledge and Skills:
Service management standards and baselines in Operating Systems, Network Virtual environments, Databases, and middleware
Good Knowledge on networks, applications, data center infrastructure,
self-service channels, power, and cooling utilities monitoring and
troubleshooting.
Read Also:
Possess good interpersonal skills.
Must be creative, innovative, aggressive and a team player.
Flexibility to work on shift rotation basis
Good observation and analytical skills.
Familiarity with Agile development methodologies.
Experience with varieties of databases and object-relational Mapping (ORM) frameworks.
Knowledge of programming and shell scripting, e.g., Java, Python, Bash script
Linux & terminal commands
DevOps skills
Qualifications and Experience:
Bachelor’s degree in computer science or related academic field.
Professional certification in ITIL; CCNA, Self-service channels, Monitoring tools training/ certification.
Two years’ experience in handling Monitoring Tools (Microfocus) in large corporate organizations.
Two years’ experience in systems and Network security technologies such
as TCP/IP, Network devices (Switches, Routers and Firewalls) UNIX/Linux,
Windows, Oracle & Microsoft Database.
NMB Bank Plc is an Equal Opportunity Employer. We are committed to
creating a diverse environment and achieving a gender balanced
workforce.
Female candidates and people living with disabilities are strongly encouraged to apply for this position.
NMB Bank Plc does not charge any fee in connection with the application or recruitment process. Should you receive a solicitation for the payment of a fee, please disregard it.
Job closing date : 23-Jan-2024
