JOB PURPOSE

To independently evaluate the adequacy and effectiveness of the controls, procedures and policies put in place by management to safeguard and minimise the risks associated with information systems in the bank. The role provides independent assurance to Senior Management and the Board of Directors that investments made in technology are enabling the business, creating the expected value to stakeholders, and achieving business objectives. The Team Lead also assists stakeholders to identify business pain points occasioned by the use of technology in provision of services to customers and improve business efficiency.

KEY RESPONSIBILITIES

Audit Planning & Execution

• Lead the planning, scoping, and execution of IT and information systems audit assignments in line with the annual audit plan.

• Conduct risk-based assessments of IT infrastructure, applications, databases, and cybersecurity controls.

• Evaluate the design and operating effectiveness of IT General Controls (ITGCs), including access management, change management, IT operations, and data backup/recovery.

• Review application controls for core banking systems, payment platforms, and critical business applications.

• Assess compliance with regulatory requirements (CBN, NDPC, PCI-DSS, ISO 27001) and internal IT policies.

Reporting & Communication

• Prepare high-quality audit reports communicating findings, root causes, risk implications, and actionable recommendations to Senior Management and the Board.

• Track and verify the timely remediation of identified audit observations and control weaknesses.

• Present audit findings to senior stakeholders, including the Audit Committee.

Team Leadership

• Lead and mentor a team of IS auditors, providing technical guidance and professional development support.

• Review and approve audit workpapers, ensuring quality, completeness, and accuracy.

• Foster a high-performance team culture centred on continuous improvement, objectivity, and professional scepticism.

Cybersecurity & Emerging Technology

• Assess cybersecurity frameworks, threat detection capabilities, incident response processes, and data protection controls.

• Stay current with evolving technology risks, cyber threats, and emerging audit methodologies to strengthen the audit function's relevance and value.

JOB PROFILE

Qualifications & Experience

• Bachelor's degree in Computer Science, Information Technology, Accounting, or a related field.

• Minimum 6–8 years of experience in IT audit, cybersecurity, or information risk management, with at least 2 years in a supervisory or team lead role.

• Professional certifications: CISA (required); CISM, CISSP, or CIA are added advantages.

• Strong knowledge of IT audit methodologies, frameworks (COBIT, ITIL, NIST), and international standards (ISO 27001, PCI-DSS).

• Experience auditing core banking systems (Finacle, T24, Temenos, etc.) is highly desirable.

Skills & Competencies

• Analytical mindset with strong problem-solving and critical-thinking skills.

• Excellent report writing and verbal communication skills.

• Ability to manage multiple audit assignments simultaneously and meet deadlines.

• Strong stakeholder management and interpersonal skills.

• High degree of professional integrity and ethical conduct.