Omniretail is Africa’s fastest-growing startup, revolutionizing trade digitization to provide manufacturers with unparalleled supply chain visibility. Through technology, logistics, and financing solutions, we empower small and medium-sized enterprises (SMEs) to thrive in emerging markets. Our Platform as a Service (PaaS) and fintech solutions offer working capital access, rewards programs, and sustainable business practices.
Role Summary
- The IT Auditor plays a critical role in evaluating and enhancing the organization’s IT systems, security controls and overall technological infrastructure, specifically focusing on our cloud-based environment) Azure and AWS).
- This position is responsible for conducting comprehensive IT audits to assess efficiency, effectiveness, and compliance of cloud systems and processes.
- The IT Auditor identifies potential risks, tests internal controls, and provides actionable recommendations to improve IT governance and security posture.
- The ideal candidate will possess strong analytical skills, a deep understanding of cloud technologies, IT systems, and security protocols, and excellent communication abilities to effectively convey complex technical concepts to various stakeholders.
Key Responsibilities
IT Audit Planning and Analysis:
- Plan and perform IT Audits to evaluate cloud-based IT systems, security controls and infrastructure (Azure and AWS).
- Test internal controls related to cloud systems, including network security, access controls, and data security.
- Investigate IT security incidents or breaches to identify root causes and evaluate response times within the cloud environment.
IT Risk Assessment and Compliance:
- Assess and identify risks associated with cloud infrastructure, cybersecurity, and data management in Azure and AWS.
- Ensure cloud systems and processes comply with applicable laws, regulations, and industry standard (e.g., GDPR, NIST Cybersecurity Framework).
- Review IT policies and procedures to ensure alignment with industry best practices for cloud security.
Reporting and Recommendations:
- Prepare detailed IT audit reports for management, highlighting risks and areas for improvement specific to cloud implementations
- Provide recommendations for enhancing IT governance and control frameworks in a cloud environment
- Collaborate with IT teams to understand cloud systems, applications, and processes
Continuous improvement:
- Keep abreast of emerging technologies and best practices in IT auditing particularly in cloud security and compliance
- Assist in preparing for external audits related to cloud systems and compliance
- Evaluate IT disaster recovery plans and business continuity measures to ensure readiness in the event of a cloud disruption
System Development and Compliance:
- Conduct audits of systems development processes to ensure new cloud-based systems comply with relevant standards and regulatory requirements
- Participate in technology project reviews to ensure proper controls are implemented during cloud system development
Infrastructure and Network Auditing and Troubleshooting and Incident Response:
- Evaluate cloud infrastructure (Azure and WS) to assess the organisation’s ability to function optimally under adverse conditions.
- Perform audits of cloud-based servers, telecommunications intranet, and extranet to examine controls related to connected networks
- Perform audits of partner, server, telecommunications intranet and extranet audits to examine controls related to connected networks
- Troubleshoot security and network problems within the cloud environment to maintain the integrity and performance of IT systems.
Operational Efficiency and Fraud Prevention:
- Evaluate controls designed to prevent or detect fraud including management override controls, within cloud system
- Contribute to the identification of IT department operational efficiencies and changes in IT auditing operations specific to cloud environment.
Qualifications
Education:
- Bachelor's degree in one of the following fields: Information Science, Computer Science, Information Technology, Management Information Systems, Business Administration (with a focus on IT) or a related field;
- A master’s degree in IT, cybersecurity, or an MBA with an IT focus is preferred but not required.
Experience:
- 3 to 5 years’ experience in IT auditing or related fields, with a strong focus on cloud environments (Azure and AWS).
- Experience in areas such as database administration systems administration or computer systems analysis is an advantage.
- Proven experience in conducting cloud security audits and assessments
Certifications
- Cloud-specific certifications (e.g., Azure Solutions Architect Expert, AWS Certified Solutions Architect Professional) is mandatory.
The following additional certificaitons are an advantage:
- Certified Information Systems Auditor; or
- Certified Information Systems Security Professional; or
- Certified in Risk and Information Systems Control; or
- Certified in the Governance of Enterprise IT.
Skills:
- Strong understanding of IT security, governance, and compliance, with specific knowledge of cloud security best practices.
- Proficiency in data analysis and financial modelling tools;
- Knowledge of auditing standards and frameworks (e.g. SOX, COSO, COBIT)
- Excellent communication skills to convey technical concepts to non-technical audience
- Strong analytical and problem-solving skills.
- Ability to work independently and as part of a team.