Close this search box.

Audit Manager – IT Security and Forensics – DFCU Bank

ob Title:  Audit Manager – IT Security and Forensics  

Organisation: DFCU Bank

Duty Station:  Kampala, Uganda

Reports to: Senior Audit Manager – IT


About US:

DFCU Bank is a fast growing commercial bank offering a variety of innovative products and services. DFCU Limited was started by the Commonwealth Development Corporation (CDC) of the United Kingdom and the Government of Uganda through the Uganda Development Corporation (UDC) under the name of Development Finance Company of Uganda Limited. Later restructuring brought in DEG (of Germany) and International Finance Corporation (IFC) as equal partners with CDC and UDC, each having a 25% stake in the company. Its objective was to support long-term development projects whose financing needs and risk did not appeal to the then existing financial commercial lending institutions.


Job Summary:  Reporting to the Senior Audit Manager-IT, the Audit Manager – IT Security and Forensics will be responsible for planning and performing specific audit assignments of the bank’s IT Infrastructure, critical business applications, and IT processes.


The job holder is expected to leverage on his/her knowledge of business to participate in the execution of IT integrated audits while documenting findings in a manner consistent with Audit’s standards and recommending corrective action relating to internal control failures.


Key Duties and Responsibilities:

  • Oversee IT security and forensic audits to detect and investigate issues of suspected fraud and financial loss within the Bank.
  • Lead internal/external resources to conduct IT security assessments and address allegations of cybercrime fraud raised within the bank.
  • Schedule, assign work, supervise, and participate in the execution of individual audits to ensure work of other auditors conform to quality standards and ensure timely completion of audit.
  • Review of working papers of completed IT audit projects to ensure that sufficient and reliable evidence has been gathered as a basis for reporting.
  • Review of draft reports in connection with working papers to ensure full and complete reporting in a professional manner prior to approval by the Senior Audit Manager/HIA.
  • Develop audit staff through training, coaching & mentoring to enhance their competence.
  • Identify and analyse causes of poor control performance and make suitable recommendations for improving management controls
  • Prepare work papers to adequately document work performed with supporting evidence.
  • Participate in the planning of IT Audits and responsible for the completing all testing within the audit timelines.
  • Discuss and agree the factual accuracy of audit observations with the Heads of Departments and the audit management team as appropriate.
  • Develop Information Technology Audit Programs.
  • Build strong relationships and mutual trust with all colleagues internal (HIA/Senior Managers) and external (Regulators).
  • Assist in automation of internal audit processes and procedures.
  • Perform any other assigned tasks by the supervisor.


Qualifications, Skills and Experience:

  • The applicant for the DFCU Bank job must hold a Bachelor’s degree in information technology, Computer Science, Finance, or any related field.
  • Technical professional certification required (CISA, CGEIT, CISSP, CISM etc).
  • Five years of auditing experience with at least 3 years of providing IT audit and assurance services in a busy and changing organization.
  • Experience in use of CAATS like IDEA and audit management software like Teammate with a broad working knowledge of auditing techniques and standards.
  • Experience analysing data and coding with specialized tools (MS SQL Server, IDEA, ACL, PowerBi).
  • Good knowledge of cyber security audit tools such as Nessus, Nmap, Nikto, Wireshark etc.
  • Good knowledge of IT risks in cloud security, cyber security threats, data privacy and compliance, IT Governance, emerging technologies, system disruptions, digital transformation, and vendor management.
  • Data visualisation and storytelling skills.
  • Full understanding of Internal Auditing Standards, Concepts and Principles
  • Practical understanding of relevant industry regulations and their impact on technology.
  • Excellent written and oral communications skills, including the ability to present forensic findings in an objective and unbiased manner.
  • Strong analytical, attention to detail, organizational and core project management skills.
  • Strong and proficient analytical skills.
  • Stakeholder management skills.


How to Apply:

If you believe you meet the requirements as noted above, please forward your application with a detailed CV including present position and copies of relevant professional/academic certificates (University Transcript, O & A level), to the email address indicated below.


Deadline: 16th August 2023



More Jobs