Reporting to the Group Internal Audit Manager, the Information Systems Auditor is a self-driven professional responsible for conducting information systems audits across the Group. The role involves preparing comprehensive audit reports and highlighting critical issues related to internal controls and risk management. The successful candidate will bring a systematic approach to examine and evaluate the adequacy, effectiveness, and efficiency of the Group’s risk management processes and internal control systems, recommending corrective actions to improve efficiency and reduce operational costs.
Key Duties and Responsibilities
Audit Planning: Assist in key risk identification and assessment and participate in the preparation of the annual IS audit plan in liaison with the Head of Department. Prepare detailed IS Audit planning memoranda, audit programs, and procedures for each assignment.
Audit Execution: Execute IS audit assignments and document well-referenced working papers and evidence in accordance with IS audit standards and best practices.
Systems Evaluation: Evaluate the adequacy and effectiveness of controls for information systems and technology processes, including data protection, change management, and cybersecurity.
Reporting: Prepare and present concise, accurate written and oral reports and other technical information for distribution to management.
Follow-up: Perform audit follow-up and tracking of open findings to ensure they are closed within agreed timelines.
Quality Assurance: Provide quality assurance during technology acquisition, implementation, and sign-off on IS projects.
Technical Advisory: Stay updated on emerging technology trends, security vulnerabilities, and threats in the IS landscape, providing timely advice to stakeholders.
Collaboration: Work with different departments to gather information and support audits.
Improvement: Recommend revisions to audit procedures to enhance operational efficiencies.
Key Competencies
Strong analytical skills with high attention to detail.
Ability to observe business processes and derive actionable insights.
Self-driven with the ability to work under minimum supervision.
Good verbal and written communication skills.
Excellent interpersonal skills and a strong team player.
High standards of ethics, confidentiality, and professionalism.
Ability to manage and deliver to strict deadlines.
Qualifications and Experience
Education: Bachelor’s Degree from a recognized university, preferably in Computer Science, Business Information Technology, or a related field.
Professional Certification: Certified Information Systems Auditor (CISA) or Certified Information Security Manager (CISM) is required. CIA certification is an added advantage.
Experience: At least 2–4 years of relevant experience in internal or external audit, preferably within the Insurance or Financial Services industry.
Technical Skills: Excellent computer skills with hands-on experience in Excel and Audit Software (e.g., ACL, Case Ware IDEA, SQL).
How to Apply
Qualified candidates are requested to forward their applications including comprehensive C.Vs to the Group Human Resources Manager through Email: hr_recruitment@madison.co.ke with the Role as the Subject of the email and not later than 15th April, 2026.
How to Apply
Qualified candidates are requested to forward their applications including comprehensive C.Vs to the Group Human Resources Manager via email: hr_recruitment@madison.co.ke. Ensure the role title is used as the Subject of the email. The deadline for submission is 15th April, 2026.
.png){kind=logo}
