JOB VACANCY: INTERNAL AUDIT ASSOCIATE – ICT

Duty Station: Harare, Zimbabwe

Position: INTERNAL AUDIT ASSOCIATE – ICT

Reports To: HEAD, INTERNAL AUDIT & RISK MANAGEMENT

Job Type: Contract

Available Slots: 1

Application Deadline: 29 June 2023

Duration of Appointment: Fixed-term contract of two (2) years (renewable, subject to satisfactory performance)

Nationality: To be eligible for appointment, candidates must be nationals of the Republic of Zimbabwe.

Job Purpose

Within delegated authority, to undertake Information & Communication Technologies (ICT) internal audits in accordance with annual audit plan, as well as assist with other audit matters.


Key Result Areas 

Internal ICT controls

Network Security audits

Systems improvement

Internal Audit



Principal Duties

1. Examine internal ICT controls, evaluate the design and operational effectiveness, determine exposure to risk, and develop remediation strategies.
2. Test compliance of ICT applications and systems to applicable laid down policies, procedures, and regulations.
3. Conduct efficient and effective ICT audit procedures.
4. Respond to all system and/or network security breaches.
5. Plan, implement, monitor, and upgrade security measures for the protection of the organization’s data, systems, and networks.
6. Test and identify network and system vulnerabilities and create counteractive strategies to protect the network.
7. Review, evaluate, and test application controls.
8. Provide recommendations and guidance on identified security and control risks.
9. Communicate complex technical issues in simplified terms to the relevant staff.
10. Perform regular audit testing and provide recommendations.
11. Develop a strong understanding of business and system processes.
12. Provide consulting services through participation in projects designed to introduce new and / or changing processes.
13. Assist the Head of Internal Audit in the development of the annual internal audit plan
14. Assist in the development and implementation of the evolving ARIPO Internal Audit methodology in line with changes in the organization.
15. Assist in the preparation of concise and informative audit reports to effectively communicate the findings and recommendations to departments and management.

Qualification and Experience

Bachelor Degree in Computer Science/Information Systems/ related field.   

Minimum 3 three years ICT Audit experience. 

Professional ICT auditing certification such as CISA. 


Competencies and Skills required

Solid and demonstrated understanding of ICT audit methodologies.

Expertise in Firewalls, VPN, Data Loss Prevention, IDS/IPS, Web-Proxy, and Security Audits.

Ability to work under pressure in a fast-paced environment.

Outstanding problem-solving skills, and meticulous attention to detail. 

Strong awareness of cybersecurity trends and hacking techniques.

Strong communication skills and the ability to build relationships with key stakeholders.


Conditions Of Employment

Salary and allowances on first appointment shall be those applicable to Grade GS9 Step 1 of the ARIPO salary scales of the General Service category.

Base Salary:  US$17,361 per annum. 

Dependency Allowances: US$990 per year for a dependent child. Maximum number of children three (3).

Other benefits include

Housing allowance;

Contributory medical aid scheme; and 

30 days annual leave.

Medical examination:  The appointment is subject to a satisfactory United Nations type medical examination to be conducted by an ARIPO nominated medical practitioner.

Only shortlisted candidates will be contacted.  

This post is restricted to nationals of Zimbabwe.