JOB VACANCY: ICT AUDIT ASSOCIATE
Duty Station: Harare, Zimbabwe
Position: ICT AUDIT ASSOCIATE
Reports To: HEAD, INTERNAL AUDIT & RISK MANAGEMENT
Job Type: Contract
Available Slots: 1
Application Deadline: 23 February 2024
Duration of Appointment: Fixed-term contract of two (2) years (renewable, subject to performance)
Nationality: To be eligible for appointment, candidates must be nationals of the Republic of Zimbabwe.
Job Purpose
Within delegated authority, to undertake Information and communication Technologies (ICT) internal audits following the annual audit plan, as well as assist with other audit matters.
Key Result Areas
• IT General Controls (ITGC)
• IT Security
• Systems improvement
• Risk Management
• Data Analytics
• Internal Audit
Principal Duties
1. Examine internal ICT controls, evaluate the design and operational effectiveness, determine exposure to risk, and develop remediation strategies.
2. Test compliance of ICT applications and systems to applicable laid down policies, procedures, and regulations.
3. Conduct efficient and effective ICT audit procedures.
4. Respond to all system and/or network security breaches.
5. Plan, implement, monitor, and upgrade security measures for the protection of the organization’s data, systems, and networks.
6. Test and identify network and system vulnerabilities and create counteractive strategies to protect the network.
7. Review, evaluate, and test application controls.
8. Provide recommendations and guidance on identified security and control risks.
9. Communicate complex technical issues in simplified terms to the relevant staff.
10. Perform regular audit testing and provide recommendations.
11. Develop a strong understanding of business and system processes.
12. Apply knowledge of auditing in areas such as IT governance, IT security policies and procedures, IT strategic planning, systems development, system access, change management, business continuity, and project management.
13. Provide consulting services through participation in projects designed to introduce new and/or changing processes.
14. Assist the Head of Internal Audit in the development of the annual internal audit plan
15. Assist in the development and implementation of the evolving ARIPO Internal Audit methodology in line with changes in the organization.
16. Assist in the preparation of concise and informative audit reports to effectively communicate the findings and recommendations to departments and management.
Qualification and Experience
• Bachelor Degree in Computer Science/Information Systems/ related field.
• Minimum 3 three years ICT Audit experience.
• Professional ICT auditing certification such as CISA.
Competencies and Skills required
• Solid and demonstrated understanding of ICT audit methodologies.
• Expertise in Firewalls, VPN, Data Loss Prevention, IDS/IPS, Web-Proxy, and Security Audits.
• Ability to work under pressure in a fast-paced environment.
• Outstanding problem-solving skills, and meticulous attention to detail.
• Strong awareness of cybersecurity trends and hacking techniques.
• Strong communication skills and the ability to build relationships with key stakeholders.
Conditions Of Employment
Salary and allowances on the first appointment shall be those applicable to Grade GS9 Step 1 of the ARIPO salary scales of the General Service category.
Base Salary: US$17,361 per annum.
Dependency Allowances: US$990 per year for a dependent child. Maximum number of children three (3).
Other benefits include:
• Housing allowance;
• Special allowance;
• Contributory medical aid scheme; and
• 30 days annual leave.
Medical examination: The appointment is subject to a satisfactory United Nations-type medical examination to be conducted by an ARIPO-nominated medical practitioner.
Only shortlisted candidates will be contacted.