IT Audit Specialist at Nedbank

Job Title: IT Audit Specialist

Location: Nedbank Lesotho Limited
Closing Date: 5th February 2025


Job Overview

Nedbank Lesotho Limited is seeking a highly skilled IT Audit Specialist to provide independent and objective assurance on governance processes, risk management, and internal control systems. The role, under the supervision of the Head of Internal Audit, will focus on mitigating current and emerging risks that threaten the achievement of the bank’s objectives while fostering a strong control culture.


Key Responsibilities

Audit Planning and Execution

  • Perform audits based on the annual audit plan and risk assessments.
  • Identify high-risk areas through analysis of business documents, results, and reports.
  • Assist in preparing annual audit plans informed by risk assessment outcomes.

Risk Management and Assessment

  • Identify areas within the bank with significant risks or potential risks needing audits.
  • Develop and maintain Risk and Control Matrices (RACM).
  • Assess IT controls’ effectiveness in mitigating risks and preventing potential threats.
  • Conduct cyber assessment reviews to identify vulnerabilities and potential breaches.

Stakeholder Engagement

  • Maintain relationships with regulators (e.g., CBL), external auditors, and internal business units.
  • Participate in business meetings and committees to support stakeholder relationships.
  • Highlight benefits of recommendations to drive adoption of enhanced processes.

Compliance and Best Practices

  • Ensure adherence to IT governance frameworks, cybersecurity principles, and regulatory requirements.
  • Conduct training and awareness sessions to enhance staff understanding of IT controls and compliance.
  • Research and implement best practices to align with evolving industry standards.

Reporting and Follow-Up

  • Prepare comprehensive audit documentation to ensure relevance and completeness.
  • Follow up on audit findings to confirm corrective actions are implemented effectively.

Qualifications and Experience

Essential Qualification

  • A Degree in Computer Science or equivalent certification such as Certified Information Systems Auditor (CISA).

Minimum Experience

  • At least 4 years of experience in IT or IT auditing.

Technical and Professional Knowledge

  • IT Controls: Expertise in IT general controls, application controls, and governance frameworks.
  • IT Environments: Strong knowledge of networks, databases, and operating systems.
  • Cybersecurity: Familiarity with threat management, data protection, and cybersecurity principles.
  • Data Analysis: Proficiency in analyzing large datasets using advanced tools.
  • Regulatory Compliance: Comprehensive understanding of relevant regulations and auditing standards.

Behavioural Competencies

  • Applied Learning: Ability to acquire and apply new knowledge effectively.
  • Communication: Strong verbal and written communication skills.
  • Collaboration: Proven ability to work well in teams and with diverse stakeholders.
  • Decision Making: Sound judgment in analyzing situations and recommending solutions.

Application Process

Interested candidates must submit their application with the following:

  1. A detailed CV.
  2. Certified copies of qualifications and relevant certificates.

Submit applications to:


Closing Date: Applications must be received by 5th February 2025.

Join Nedbank Lesotho and help strengthen our governance, risk, and compliance frameworks through expert IT auditing.

Leave a Comment