ICT Auditor

Key Responsibilities

1. Plan, implement, and generate report on medium-to-complete IT security and governance reviews and IT general and application control audits

2. Assess the adequacy, effectiveness and efficiency of the Bank’s IT control environment, identifying control gaps and recommending practical improvements

3. Lead IT-related audit engagements from planning through to reporting, including risk assessment, scoping and fieldwork.

4. Document observations and prepare clear and structured audit reports based on audit testing performed and audit findings identified

5. Track and follow up on relevant system related audit issues emanating from Internal Audit Reports and other independent external reviews to ensure their timely resolution and closure.

6. Keep abreast of emerging technologies with the IT environment and help in developing audit plans to counter whatever risks that might be associated with the application of such technologies

7. Participate in the development and review of risk based annual ICT audit plan, detailing the scope, nature and timing of audit activities.

8. Assist in conducting ad-hoc technical ICT investigations and reviews as may be requested by Internal Audit, Audit Sub - Committee and Management from time to time.

9. Assist Internal Audit department in physical cash counts, including vault and till verification exercises.

10. Ensure compliance with applicable laws, regulations and internal policies relevant to IT and Banking operations.

11. Perform other audit-related tasks as may be assigned by Internal Auditor, Audit Sub- Committee and Management from time to time.

Core Competencies/Skills and Abilities

• A certified Information System Auditor or having similar or relevant certification of a CISA/CISM would be desirable.

• Be knowledgeable of current technological developments/trends in area of expertise.

• Be knowledgeable of auditing concepts and principles.

• Must have sufficient ability to perform control reviews on systems development, operation, programming, control, and security procedures and standards.

• Ability to evaluate and review a range of ICT systems, applications, networks technologies, including Cloud applications and technologies.

• Must have some knowledge of Accounting, Financial Systems and or have familiarity with banking system such as Flexcube system would be an advantage.

• Must be well versed in cybersecurity environment, standards, practices and trends, and have some relevant training in cybersecurity.

• Good understanding of CBS prudential guidelines, International Accounting and Auditing Standards, Information Systems and Security Standards.

• Strong interpersonal skills.

• Effective oral and written communication skills

• Ability to work independently and as part of a team

• Strong attention to detail with an analytical mind and outstanding problem-solving skills

• Clean police record (essential)

Experience

• At least 3 or more years of work experience and knowledge of Risk, governance and control work in a related environment, or relevant working experience in external/internal audit managing ICT audits in a commercial bank or other established consultancies. (Essential)

Qualification

• Must possess a Bachelor’s Degree in Computer Science / Information Technology / Computer Information System or a related discipline.

Remuneration

• The position offers an attractive remuneration package based on qualification and experience.

Applications

Email or send your written application with your most recent Curriculum Vitae including name and details of three (3) Referees to: Head of Human Resources (hr@nbsamoa.com) National Bank of Samoa, P.O. Box 3047L, Apia, Samoa. (Position Description of the role can be obtained via email or can be uplifted from the HR Department)