Reporting to: Internal Audit Risk Manager (EA)Our Purpose:At Watu Africa, we empower entrepreneurs.WATU is a mission-driven, customer-centric company that believes everyone who wishes to become an entrepreneur deserves an opportunity to start, grow and achieve their goals in life. As Africa’s fastest-growing Asset Finance company, we see the continent’s bright and prosperous future and want to be part of the team transforming it into reality. Our vision is to provide asset financing services for mobility assets (motorcycles, three-wheelers, and vehicles) and phones to ambitious individuals who believe that, when provided with the right tools, they can fulfill their dreams as entrepreneurs and prosper in life while supporting the needs of their families and community. We, therefore, have a commitment to Empower Entrepreneurs by providing the means needed to move and improve in their lives.What you will do:Auditing and assessing all aspects of the company’s network applications, including software, programs, security, and communicationsPlan and execute the day-to-day activities of IT audit engagement for a variety of clients including testing controls over information security, systems change management, system development, and IT operationsInspect company’s IT policies and procedures, perform evaluation of control design; and carry out assessment of the effectiveness of company internal controls concerning IT processes and systems to help ensure company’s IT compliance programs are achievedCoordinate internal/external IT audits and assessments. Organize, track, and ensure the remediation of IT audit or assessment findings and recommendationsPerform information control reviews to include system development standards, operating procedures, system security, programming controls, communication controls, backup and disaster recovery, and system maintenanceAudit IT solutions, systems and configurations, user access controls, and settings periodically to ensure compliance with established policy and guidelinesDevelop, maintain and coordinate the testing of IT Business Continuity and Incident Response plans. Coordinate the implementation of these plans with the organization and report anomalies to senior management and applicable committeesReport any information security incident to the Internal Audit and Risk Manager. Assist with coordination and documentation of the response to an information security incident according to established policies and procedures, as requestedApply data analysis techniques to evolve the audit process and develop repeatable analyticsEvaluate internal systems for efficiency, problems, and inaccuracies, and develop and maintain protocols for handling, processing, and cleaning dataAssists and trains other audit staff in the use of computerized audit techniques, and in developing methods for review and analysis of computerized information systemsConduct operational, compliance and financial audits, as assigned, prepare and presents written and oral reports and other technical information in a pertinent, concise, and accurate manner.Keep abreast of emerging technologies with the IT environment and help in developing audit plans to counter whatever risks that might be associated with the application of such technologiesPerform other related duties as requested by supervisor.What we are looking for:Degree, preferably in Information Technology or a business-related disciplineAt least one (1) year of experience in IT, IT Audit or Data Analytics with a reputable organizationProfessional certifications in IT including CISA would be highly desirableA 2nd level ACCA or CPA/CIA/CISA will be an added advantagePossess advanced knowledge of network and application vulnerability assessment, IT practices, risk assessment practices, change control, data privacy, and business continuityStrong proficiency and skills with database applications in at least one major database platform including Access and MySQL, Oracle, SQL Server, Microsoft Office and other related technologiesWorking knowledge of network security and common protocols (TCP/IP, VPN, Firewalls, etc.)Proven knowledge of auditing standards and procedures, laws, rules, and regulations, risk management frameworks, procedures, and practices