1- Role

The IT Audit division of the Internal Audit of the Central Bank is responsible for planning and conducting IT audits at the Central Bank of Somalia. The IT Audit Officer is responsible for conducting independent and objective assessments of the Bank’s IT infrastructure, processes, and controls to ensure they are robust, efficient, and secure. The IT Audit Officer will identify risks, provide recommendations for improvement, and advise the implementation of best practices in IT governance.

2- General Description

The Central Bank of Somalia’s (CBS) main objective is to promote and maintain a safe, stable, sound, efficient, and competitive financial sector. Within the Central Bank of Somalia, the Internal Audit Department’s (IAD) primary objective is to provide independent and objective assurance to the management and the board (audit committee) on risk management, controls, and governance by measuring and evaluating their effectiveness in achieving the CBS’s agreed objectives. The IT Auditor will be responsible for developing audit plans, executing audit tests, and documenting audit results. He will carry out regular inspections and assessments of different components of the bank's information system, including IT general controls, applications, data centre infrastructures, and operational effectiveness. He will evaluate the level of risk involved and offer recommendations accordingly.3- Duties and Responsibilities

Conduct IT audit risk assessment and IT internal audit programs covering IT security, systems, applications, and IT processes in accordance with internal audit policies,

procedures, methodologies, and IPPF standards.

Plan and execute efficient and effective IT audit testing (e.g., Application systems, Databases, IT security, network infrastructure, operating systems, databases, and data

centres) and ensure that they are timely and accurate.

Conduct entrance and exit meetings and prepare meeting minutes.

Document business processes, workflows systems of IT processes in the audit plan to

ensure adequate audit coverage.

Review the key processes, procedures, and systems, as well as key control deficiencies and processes that causes risk and waste of resources and provide effective recommendations

to address.

Communicate complex IT technical issues in simplified terms to the relevant leadership

and staff.

Assists and trains other audit staff in the use of computerized audit techniques, and in

developing methods for review and analysis of computerized information systems.

Prepares audit reports and other technical information in a pertinent, concise, and

accurate manner for distribution to management.

Prepare working papers and audit reports for relevant audits conducted by the section to

ensure that all audit findings are adequately supported.

Appraise the adequacy of departmental responses to audit recommendations and perform post-audit reviews to determine the extent to which audit recommendations

have been implemented.

Plan and conduct special investigations as may be assigned by Audit Management.

Develop a risk-based test plan by selecting appropriate audit approach, test procedures and sampling criteria based on professional judgment and departmentally defined internal audit methodology.

Any other duties that may be assigned from time to time.

Education:

§    Bachelor's degree in computer science, information technology, or a related field.

§    CISA certification is required.

Experience:

§    More than 3 years of relevant experience in Applications, oracle database administration, programming.

§    strong understanding of programming languages, and system development analysis.

§    experience of Linux systems and networking.

§    Strong knowledge of Windows, Linux, and Unix operating systems.

§    Experience with Microsoft Active Directory, Exchange Server, and SQL Server.

§    Experience with network security protocols and technologies.

Language:

§   Operationally fluent in both Somali and English.

5- Functional and Organizational Skills

§  Strong knowledge of programming languages such as Java and others.

§   Strong knowledge of database administration.

§   Strong knowledge of switches, firewalls, VPNs, data loss prevention, IDS/IPS, web proxy, and other network infrastructures.

§   Hands-on experience in analysing high volumes of logs, network data, and other attack artifacts.

§   Ability to work in a fast-paced, fluid environment.

§   Ability to be broadly focused and manage multiple efforts concurrently.

§   Strong analytical and problem-solving skills to enable effective problem resolution.

§   Ability to work proactively with minimal supervision.

§  Strong team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles, including vendors, customers, IT personnel, and senior management.

§   Strong written and verbal communication skills.

§   Able to clearly explain technical issues in a way that non-technical people can understand.

§   Ability to create externally facing documentation as required.

§   Knowledge of auditing concepts and principles.

§   Knowledge of current technological developments/trends in the area of expertise.

§   Other job-related duties and tasks assigned by his/her supervisor.

Qualified national applicants with required skills are invited to submit their electronic applications and updated resumes through email; [email protected] and copy to [email protected] not later Than 26th August 2024 Mogadishu midnight time.

Incomplete Applications and those received after deadline will not be considered. Per human resources policy of the Bank, Central Bank is equal opportunity employer and female applicants are highly encouraged to apply. Please note Only shortlisted candidates will be contacted