Manager, Information Systems Security Audit, Internal Audit at Diamond Trust Bank (DTB)
Role Purpose:
The Manager, Information Systems (IS) Security Audit, is a
key member of the Internal Audit Team tasked with the responsibility of
performing cyber security information systems audits throughout the Bank’s IS
Infrastructure Systems and Business Applications including audits of complex
computer applications and technological solutions in accordance
with the existing IS Workplan and professional standards on IS auditing,
Internal Audit Methodology, processes, procedures and timeframes.
Key Responsibilities:
Under the direct supervision of the Head Information Systems
Audit or designate, the incumbent will be expected to, inter alia: –
- Perform
IT security audits across the Bank’s IT infrastructure, including DTB
Group.
- Carry
out Vulnerability Assessment and Penetration Testing (VAPT) across the DTB
Group.
- Review
digital products, software development and related systems/Applications/
Application Programming Interfaces – APIs/ software.
- Assess
the Software/System development life cycle and management methodology/
approach and Security benchmarks.
- Review
cloud deployments infrastructures and security posture.
- Participate
in any IT-related investigations as and when required.
Academic & Professional Qualifications:
- BSc.
in Information Technology/ Computer Science or other IT related Degree.
- Certificate
in Cybersecurity OSCP/C-PENT or other VAPT courses.
- Certificate
in IT Audit CISA/ CISM/ CEH/ CHFI/ CISSP.
- Certificate
in cloud engineering.
Relevant Experience
- 5
years’ practical work experience in VAPT and software development,
preferably in financial services industry.
- Good
understanding of programming languages such as Python, Java, JavaScript,
React, Node JS, etc.
- Good
understanding of various Databases such as Oracle, SQL, Cassandra, Mongo
DB, Postgress etc.