Role Purpose:          

• The Manager, Information Systems (IS) Security Audit, is a key member of the Internal Audit Team tasked with the responsibility of performing cyber security information systems audits throughout the Bank's IS Infrastructure Systems and Business Applications including audits of complex computer applications and technological solutions in accordance with the existing IS Workplan and professional standards on IS auditing, Internal Audit Methodology, processes, procedures and timeframes.
•  

Key Responsibilities:

Under the direct supervision of the Head Information Systems Audit or designate, the incumbent will be expected to, inter alia: -

• Perform IT security audits across the Bank’s IT infrastructure, including DTB Group. 
• Carry out Vulnerability Assessment and Penetration Testing (VAPT) across the DTB Group.
• Review digital products, software development and related systems/Applications/ Application Programming Interfaces - APIs/ software.
• Assess the Software/System development life cycle and management methodology/ approach and Security benchmarks. 
• Review cloud deployments infrastructures and security posture. 
• Participate in any IT-related investigations as and when required.

Academic & Professional Qualifications:

• BSc. in Information Technology/ Computer Science or other IT related Degree.
• Certificate in Cybersecurity OSCP/C-PENT or other VAPT courses. 
• Certificate in IT Audit CISA/ CISM/ CEH/ CHFI/ CISSP. 
• Certificate in cloud engineering.

Relevant Experience

• 5 years’ practical work experience in VAPT and software development, preferably in financial services industry. 
• Good understanding of programming languages such as Python, Java, JavaScript, React, Node JS, etc.  
• Good understanding of various Databases such as Oracle, SQL, Cassandra, Mong
• o DB, Postgress etc.