Internal Audit Manager

Purpose of role:

The internal auditor manager will be responsible for leading the development and implementation of an internal risk-based audit strategy and annual plan for the group. This role is critical in ensuring the proper management of financial and fraud risks, strengthening internal controls, and providing assurance on governance, risk management, and compliance processes across the organisation. The role will involve assessing the adequacy of internal controls, evaluating financial and operational risks, and ensuring compliance with relevant policies, procedures, and regulations.

Key responsibilities:

• Develop and implement an internal risk-based audit strategy and annual audit plan for the group, with a strong focus on fintech risk factors.
• Conduct audits to assess control effectiveness, operational efficiency, and compliance with financial, fraud, regulatory, and information security policies.
• Analyse IT processes and controls to ensure robust security and compliance measures are in place, particularly regarding digital transactions and fintech-specific risks.
• Lead internal control reviews and audits of cybersecurity domains, payment security, and fraud prevention mechanisms.
• Develop, document, and maintain an information security audit program aligned with enterprise policies, industry standards (e.g. PCI-DSS, AML, FICA, POPIA), and fintech best practices.
• Champion best practices in governance and assess the adequacy of governance systems.
• Update and monitor the group’s risk management framework, ensuring alignment with FinTech compliance requirements.
• Evaluate and test business processes, payment systems, and controls to identify risks and recommend mitigation strategies.
• Identify over- and under-controlled areas and articulate residual risks where existing controls are inadequate.
• Conduct periodic training workshops to promote internal controls awareness, fintech security standards, and policy changes.
• Participate in policy/procedure development and operational improvement task forces.
• Provide an evidence-based annual opinion on governance, risk management, and internal control effectiveness.
• Promote high ethical standards across the organisation based on principles of integrity, objectivity, competence, and confidentiality.
• Assess corporate risk strategies, anti-fraud policies, IT security strategies, and regulatory compliance specific to the fintech industry.
• Review significant partnership arrangements, third-party service providers, and cloud-based financial technology platforms to ensure robust controls are in place.
• Prepare and present internal audit reports with actionable recommendations tailored to fintech-specific risks.
• Report on internal control issues and monitor the implementation of audit recommendations.
• Review fraud detection and prevention mechanisms within digital transactions and enhance financial controls against emerging cyber threats.
• Establish systematic risk identification, analysis, and communication processes to support fintech innovation while mitigating security risks.
• Coordinate with external auditors and regulatory bodies to ensure seamless execution of statutory financial audits and compliance assessments.

Core competencies:

• Strong knowledge of IT and business process integration, particularly within fintech environments.
• Expertise in financial, fraud, and cybersecurity risk management.
• Excellent communication skills, with confidence in engaging senior management and regulatory authorities.
• Ability to manage and lead teams effectively.
• Strong analytical skills and business acumen, with an understanding of fintech industry trends.
• Ability to apply “big picture” thinking while ensuring detailed risk mitigation.
• Highly focused, proactive, and professional.
• Independent, objective, and ethical in decision-making.
• Ability to anticipate, adapt to, and manage change effectively in a fast-paced fintech environment.
• Self-motivated and action-oriented.

Skills and experience required:

• Bachelor of commerce (BCom) in accounting, finance, internal audit, or a related field (essential).
• Certified Internal Auditor (CIA) (essential).
• 3–5 years of relevant experience in internal auditing, financial risk management, or compliance auditing, preferably within the fintech or financial services industry.
• Strong IT auditing skills, including experience with internal control frameworks and cybersecurity audits.
• In-depth knowledge of financial regulations applicable to fintech, including AML, FICA, PCI-DSS, and POPIA.
• Hands-on experience in fraud detection, transaction monitoring, and fintech risk assessments.
• Strong report writing and presentation skills tailored to fintech compliance and risk management.
• Proficiency in audit and risk management tools, data analytics for fraud detection, and fintech security software.

Posted on 13 Feb 08:24, Closing date 14 Apr