Manager - Technology Audit.Group Internal Audit and Forensics at MTN

Responsibilities

• The Manager: Technology Audit role is responsible to achieve the following objectives:

Audit Management and Planning

• Assist the Senior Manager in the execution of technology systems and processes audit plans, to identify risks and vulnerabilities in control areas and to ensure that processes and systems comply with company policies, and statutory and regulatory policies.
• Develop and maintain a holistic view of each Technology Audit engagement to provide appropriate business and technical context for audit findings. 
• Plan, implement, and oversee audit procedures required to effectively deliver Technology, Security, and Network audits in line with approved audit plans and management requests.
• Prepare database updates, provide status reports and produce final audit reports on assignments carried out, in line with internal audit standards and methodologies.
• Ensure audit assignments are executed within agreed timelines, proactively managing progress and escalating significant risks, delays, or resource constraints to the Senior Manager for awareness and intervention where required.
• Track and follow up on audit findings and update respective trackers and stakeholders regularly. Track and keep record of correspondence, filing of documentation in central Network drive.
• Ensure audit outcomes are clearly linked to the defined audit scope, risks, and objectives.
• Support the Senior Manager in coordinating with External Auditors, facilitating their technology‑related audit fieldwork and information requests as required.

​​​​​​​Audit Governance and Risk Control

• Ensure strict adherence to Group Internal Audit methodology, standards, and procedures throughout the audit lifecycle.
• identify and clearly define issues, develop robust audit criteria, analyse and evaluate evidence, and ensure accurate documentation of Technology, Security, and Network processes and controls.
• Provide analysis on technology systems and processes internal audit data, identifying vulnerabilities in IT systems and internal policies, trends on IT systems failures, inconsistencies, weaknesses in the control areas. Report these findings to management with recommendations on possible mitigations and enhancements.
• Ensure all Technology, Security, and Network audits are executed, documented, and reported on the eGRC system in accordance with mandated processes and Group Internal Audit methodology.
• Implement approved audit programs to identify control weaknesses, assess their significance and materiality, and evaluate control adequacy and effectiveness across Technology‑enabled business processes.
• Monitor and follow up on the timely implementation of agreed audit recommendations, escalating overdue or high‑risk actions where necessary.
• Review audit programs to confirm that appropriate and sufficient testing mechanisms are in place to support audit objectives and conclusions.
• Keep up to date with new technology solutions to mitigate/change IT systems security vulnerabilities and provides reporting on these solutions.
• Maintain MTN’s ethical standards and ensure audit activities are conducted in full compliance with the International Standards for the Professional Practice of Internal Auditing (IIA Standards) and the IIA Code of Ethics.

​​​​​​​Stakeholder and Team Engagement

• Maintain relationships with management of assigned functional/business units to provide a value-added service.
• Engage effectively with internal stakeholders, including operational teams, Audit Managers, General Managers, BRM consultants, and Executive Management, to obtain information and communicate outcomes that support audit objectives.
•  Provide guidance, coaching, and technical input to ensure findings, conclusions, and recommendations are robust, well‑supported, and clearly articulated.
• Direct, review, and challenge the work performed by audit staff, including interviews, documentation reviews, audit surveys, working papers, and audit summaries.
• Provide guidance, coaching, and technical input to ensure findings, conclusions, and recommendations are robust, well‑supported, and clearly articulated.

​​​​​​​Reporting 

• Lead management oversight on OpCo reporting, OpCo coordination, OpCo support and OpCo Technology Audit operations.
• Prepare and review clear, concise, and impactful audit reports that document observations, root causes, risks, and practical recommendations engaging various stakeholders in Opcos to ensure a comprehensive report.
• Communicate audit results, findings, and recommendations timeously through formal reports and face‑to‑face presentations to the Senior Manager and relevant stakeholders.
• Contribute to and report on ad‑hoc audits, investigations, and special projects as required, providing management with clear insights into emerging technology risks and control effectiveness.

​​​​​​​Key Deliverables

• Robust Audit Reports and Actionable Recommendations
• High‑Quality Technology Audit Engagements
• Effective Audit Planning and Resource Utilisation
• Audit Issue Tracking and Remediation Follow‑Up
• Stakeholder Engagement and Audit Quality Assurance

​​​​​​​Role Dependencies

• Understanding of the Audit plan
• Active support from the Senior Manager
• Understanding of the respective technology and business contexts and the risks associated
• Intra-functional collaborations with Group Risk and Compliance

Qualifications

Education:

• Minimum 3-year Diploma Engineering, Information Systems and Computer Systems/Science 
• Preferred, 4-year Bachelor of Engineering/ Information Systems and Computer Science/ Bachelor of Science
• Preferred, CISA / CISSP

Experience:

• Minimum 5 years’ experience in area of specialisation coupled with supervising / managing others
• Experience in presenting audit reports to senior stakeholders
• Data gathering, research and analytical abilities to develop insightful conclusions
• Experience in supervising and coordinating output 
• Experience working in a medium organisation
• Experience in working under pressure and delivering under tight deadlines

​​​​​​​Key Technical knowledge:

• Active Directory 
• Firewall and routers 
• Network Security
• API security 
• Cloud security 
• Endpoint security
• Knowledge on various OS’s (windows, Linux, Android, iOS, DA’s etc) 
• Experience using various security tools 

Apply Before 05/26/2026