Hiring Organisation: Leadway Assurance Company

Leadway Assurance Company Limited was founded in 1970. Sir (Dr.) Hassan O. Odukale, (KJW, D.Sc., FCIIN).It has a chequered history of being a company with close attention to relationships, having started operations as a direct motor insurance company. Soon the relationship developed to a stage where it has established a deep relationship with the brokers’ network in Nigeria, enjoying 80% of its current business from this source.

The pivotal point at Leadway is “the customer” and the company has enjoyed a steady growth in its commitment to providing integrated insurance and financial services to its numerous customers.

The Company’s remarkable success has been possible because of its sound professional and business standards backed by the uncompromising level of integrity of its Directors. An uncompromising level of integrity of service is a tradition imbibed at LEADWAY and instilled by its late founder, Sir (Dr.) Hassan O. Odukale, KJW, D.Sc, FCIIN (1926-1999). As an astute and honest businessman the founding Managing Director and later Chairman of the Board of Directors, Sir Odukale nurtured the Company to an enviable position in the Nigerian insurance industry. His vision of dedicated service to all customers remains a guiding principle that shapes the policies of the company.

LEADWAY is a private company with 42 shareholders, 14 of which are corporate investors, and 2 Trust Corporations.

Division/Department: Internal Audit
Reports to: Head, Internal Audit
Job: Shared Services
Schedule: Regular
Shift: Standard
Job Type: Full-time

General Description of the Job

Conducts evaluation of the company’s information system, internal controls and management procedures to ascertain accuracy, validity, effectiveness of controls, system reliability and data integrity.
Collects and evaluates evidence of the organization’s information systems, practices, and operations to ensure whether the organization’s information systems safeguard assets, maintains data integrity, and are operating effectively and efficiently to achieve the organization’s goals or objectives.

Main Duties of the Post

Planning, managing and executing of IT internal audit procedures and the creation of internal audit reports on network security issues, secured application development, change management, database security, physical/server room security, user access rights management, incident and problem management, log management, business continuity and disaster recovery planning, etc.
Conducts periodic business Applications reviews & Systems Interactions Audit to ascertain effectiveness of controls, level of system reliability and data integrity.
Identifies risks and weaknesses inherent in the company’s business processes, electronic transactions and make recommendations to management, on appropriate controls to put in place for prevention of fraudulent activities and revenue leakages.
Collaborate with project teams within the company/group and provide system review services and assistance to external auditors and other professionals that may be engaged by the company from time to time. Provides technical support and takes active part in cross-training with financial auditors, internal controls and ERM teams.
Deploys appropriate CAATs for data analysis, with the aim of identifying unusual transaction, and confirming data integrity.
Carries out periodic readiness test of disaster recovery arrangement and ascertains adequacy of back-up methodologies and contingency plans.
Ascertains adequacy of and compliance with standards for system development, programming and analysis, data security and control, users’ procedures and system documentation.
Issues exception reports expressing opinion on IS Audit activities, control weaknesses, identified risks and makes improvement recommendations to management on regular basis.

Key Success Factors:

Commitment of audit committee/board
Availability of required audit tools
Prompt implementation of audit recommendation

Key Competencies required – Technical:

Data collection and analysis
Competence in Interviewing
Competence in report writing
Knowledge of and ability to apply relevant audit standards and guidance
Ability to gather and evaluate evidence
Risk Assessment and internal control
Ability to conform to established professional Codes of Ethics

Key Competencies required – Business:

Business Understanding

Key Competencies Required – Personal:

Persuasion and collaboration: Persuades and motivates others through collaboration and cooperation
Critical thinking: Applies process analysis, business intelligence, and problem-solving techniques
Competency in time management
Good communication skill


Work with Developers/administrators of ALL applications
Liaise with the users across all departments during interviews, investigations etc.
Relate with vendors/suppliers of systems such as ACL etc.
Work with ERM team in various ERM functions such as review/update/assessment of ERM documents, procedures and activities such as Risk register, DR/BCP etc.
Relate with help desk staff on various user issues.

Person Specification

Should focus here on describing the qualifications, skills, knowledge and experience an individual will require to successfully undertake the role. These should be split between essential and desirable.
Good first degree in a numerate subject


Bachelor's degree preferably in Information Systems management (Computer Science, Electronic/Electrical Engineering), etc.
Good communication skill – i.e. for Interviewing


Knowledge of CAAT – ACL (computer-aided audit tools & technique)


Minimum of 2 years working experience in a top 4 audit function with experience in providing assurance and auditing of information systems


This Job Description has been designed to indicate the general nature and level of work performed by employees within this post.
It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to the role.
These may therefore be subject to future amendments following appropriate consultation.