Reporting to the Head of Internal Audit, the Information Systems Auditor will be responsible for reviewing and evaluating the automated information processing systems, related non-automated processes, and the interfaces between them. The primary goal is to ensure that information system controls are in place and that established information system policies and procedures are strictly adhered to.
Key Responsibilities
Audit Management: Take charge of the Information System audit function within the Internal Audit Department and develop/implement the annual Information Systems audit plan.
Risk Assessment: Assess risks inherent in the bank’s information systems and recommend mitigation measures. Assist the Risk department with technical expertise to ensure ICT risks are well managed.
Policy & Compliance: Ensure the Bank maintains sound Information System policies and procedures that minimize risks. Evaluate compliance with internal policies, procedures, and operating instructions.
Inspection & Oversight: Conduct regular and surprise inspections of all procedures and processes to ensure they comply with statutory requirements and best practices.
Business Continuity: Evaluate business continuity and disaster recovery plans, including backup procedures, tests, sites, and usability.
Lifecycle Management: Evaluate and report on system infrastructure, lifecycle management, system development, acquisition, and maintenance.
Change Control: Ensure change management principles are followed across all information systems.
Support & Monitoring: Provide support to other assurance processes to ensure overall risk identification. Monitor the implementation of defined controls and audit recommendations on an ongoing basis.
Investigation: Provide system investigation services as required.
Qualifications and Competencies
Education: Bachelor’s degree in Computer Science or a related IT field.
Professional Certifications: Must possess CISA (Certified Information Systems Auditor) and/or CISM (Certified Information Security Manager). Cisco certifications (CCNA, CCSP) are an added advantage.
Experience: A minimum of five years’ experience in information systems audit.
Technical Knowledge: Thorough knowledge of current auditing techniques and experience with the entire audit process. Advanced ACL (Audit Command Language) skills or other audit software skills.
Analytical Skills: Excellent analytical skills and high attention to detail.
Communication: Strong communication and presentation skills.
Operational Awareness: Broad knowledge of information systems and operations relative to internal audit objectives.
Personal Attributes: Ability to work independently, meet deadlines, and deliver results.
How to Apply
Applications with the position applied for clearly indicated on top of the envelope, together with a detailed Curriculum Vitae and copies of academic and professional certificates, should be HAND DELIVERED or sent through COURIER/POST OFFICE to the Bank’s Head Office by Tuesday, 26th May 2026 at 5.00 pm addressed to:
The Head of Human Resources Consolidated Bank of Kenya Limited P.O. Box 51133 - 00200 NAIROBI
How to Apply
Applications with the position applied for clearly indicated on top of the envelope together with a detailed Curriculum vitae and copies of academic and professional certificates, should be HAND DELIVERED or sent through COURIER/POST OFFICE to the Bank’s Head Office located at Consolidated Bank House, Koinange Street, 6th Floor on or before Tuesday, 26th May 2026 at 5.00 pm and addressed to:
The Head of Human ResourcesConsolidated Bank of Kenya LimitedP.O. Box 51133 - 00200NAIROBI
