Job Description
INFORMATION SYSTEMS AUDITOR - ONE (1) POST – V/NO. 213//2023
Gross Salary: Kshs. 121, 851 - 185, 534 p.m. PSC 4
(Salary includes 60% basic pay and 40% allowances)
Annual Leave: 30 working days per financial year
Medical Cover: As provided by the Commission
Terms of Service: Permanent and pensionable
For Appointment to this grade, an officer must have: -
(i) served for a minimum period of three (3) years in the field of Internal Auditing in
an Information Systems environment at the grade of CSG 11 and above or a
comparable and relevant position in the Public Service;
(ii) have a Bachelors Degree in Information Technology, Computer Science, Accounting
or a related discipline from a university recognized in Kenya;
(iii) comprehensive understanding of IT security and infrastructure;
(iv) the following certifications:
a) Certified Information Systems Auditor(CISA);
b) Certified Public Accountant [CPA(K)]; and
c) Risk Management Certification.
(v) be a member in good in standing of the following professional bodies:
a) Institute of Certified Public Accountant Kenya (ICPAK); and
b) Institute of Internal Auditors (IIA).
c) Information Systems Audit and Control Association (ISACA)
Duties and Responsibilities:
(i) assist with the development of an annual risk-based IT audit plan and execute
assigned components thereof;
(ii) recommending changes to controls, processes, and procedures to ensure data
integrity and security and improve operational efficiency and appropriate
suggestions to achieve the improvements;
(iii) providing support on data analysis tools and Audit management systems;
(iv) working collaboratively with management and the Head of Internal Audit to
identify and assess IT and related risks;
(v) following up on internal audit recommendations to ensure implementation;
(vi) complying with auditing standards, follow good business practices, and efficiently
utilize audit resources;
(vii) assisting the Head of Audit and Risk coordinating with external auditors on ITrelated matters;
(viii) assisting the head of audit & risk with administrative activities related to the dayto-day affairs of the Internal Audit Department, as required.