• The General Manager – Information Systems Audits is responsible for leading the information systems audit and advisory engagements across the Group. This role oversees the planning, execution, and reporting of IT audits, as well as providing strategic advisory services to enhance the organization’s IT controls, risk management practices, and alignment with industry best practices. The role shall focus on operational leadership, execution oversight, and subsidiary coordination.
• Reports to Group Head of Audit – Technology, Digital and Data Analytics

Job Responsibilities:

• Audit Planning and Execution:
• Lead implementation of Information Systems Audit strategies
• Develop and implement an annual information systems audit plan aligned with the risk assessment and regulatory requirements.
• Lead and coordinate IT audits across the group’s subsidiaries, ensuring consistency in audit methodologies and standards.
• Evaluate the design and operating effectiveness of IT controls, application controls, data integrity, change management, and IT operations.
• Assess compliance with relevant IT regulations, industry standards, and internal policies.
• IT Advisory Services:
• Provide strategic advice and recommendations to enhance the Group’s IT controls, risk management practices, and overall technology posture.
• Conduct IT assessments, gap analyses, and maturity evaluations to identify improvement opportunities.
• Advise on the implementation of IT frameworks, standards, and best practices across the organization.
• Support the development and review of IT policies, procedures, and guidelines.
• Provide relevant assurance and advisory services in select IT projects.
• Audit Team Management:
• Provide guidance to Information Systems auditors in subsidiaries, ensuring alignment with Group-wide standards
• Manage and mentor a team of information systems auditors, providing guidance, training, and professional development opportunities.
• Assign audit and advisory resources effectively across the group’s subsidiaries and ensure adherence to timelines and budgets.
• Foster collaboration and knowledge-sharing among the IT audit and advisory teams across different locations.
• Reporting and Communication:
• Prepare comprehensive audit reports and advisory deliverables detailing findings, risks, and recommendations.
• Ensure audit findings are escalated appropriately to the Head for strategic review
• Present audit results, advisory recommendations, and strategic insights to senior management, CIO, and relevant stakeholders.
• Collaborate with local IT audit teams, IT function, and business units to ensure effective communication and alignment.
• Provide strategic level advisory through communication of key themes, insights and foresights to senior management and the Board.
• Stakeholder Management:
• Build strong governance structures to support cross-subsidiary collaboration.
• Liaise with relevant stakeholders, including IT managers, business unit leaders, and regulatory authorities, to understand their expectations and requirements.
• Foster positive relationships with internal and external stakeholders, promoting transparency and trust in the audit and advisory processes.
• Continuous Improvement and Thought Leadership:
• Stay updated with emerging IT risks, regulatory changes, and industry best practices, and incorporate them into the audit and advisory programs.
• Contribute to the development of IT strategies, frameworks, and methodologies within the organization.

Qualifications:

• Bachelor’s degree in computer science, Information Technology, or a related field.
• Professional certifications such as CISA, CISSP, or equivalent IT auditing certifications.
• 10+ years of experience in IT auditing, IT risk management, IT advisory services, or related roles, with a focus on the financial services industry
• At least 3 years’ experience in a leadership role