Senior Systems Auditor

Nairobi Hospital

Nairobifull time~KES 200k – 350k/moJust now

Quick Take

The Role

Lead independent IS audits across Nairobi Hospital's clinical and administrative systems (Kranium HMIS, Navision ERP, PACS, LIMS) while supervising the audit team and automating the audit lifecycle using TeamMate platforms.

You Need

Bachelor's degree in IT/Computer Science, advanced IS audit expertise (ITGC, application controls, cybersecurity), and hands-on experience with audit automation tools and healthcare/ERP systems.

You Get

Senior leadership role at Kenya's most respected healthcare institution with above-market salary, technical depth, and direct impact on hospital-wide digital governance and risk management.

Job Description

•Role Overview

Nairobi Hospital, one of Kenya's most respected and internationally compliant healthcare institutions, is seeking a highly capable Senior Systems Auditor to lead technology and information systems audit functions across its ICT environment. This is a senior, high-impact role that combines technical depth with supervisory leadership, requiring the ability to independently plan and execute complex IS audit engagements while providing functional oversight of the Information Systems Audit Unit.

Reporting to the Internal Audit Manager and working under reference REF: TNH/HHR/SSA/06/2026, the successful candidate will provide risk-based, independent assurance over the Hospital's Kranium HMIS, Navision ERP, and broader digital infrastructure. They will champion the end-to-end automation of the audit lifecycle using the TeamMate Audit and TeamMate Analytics platforms, ensuring audit planning, fieldwork, evidence management, and reporting are fully digitised and compliant with IIA Standards and ISACA/COBIT frameworks.

•Key Responsibilities

Plan, lead, and execute risk-based IS audit engagements across Kranium HMIS, Navision ERP, LIMS, PACS, billing platforms, and digital infrastructure in line with the approved Annual Audit Work Plan.
Develop comprehensive IS audit programmes covering IT General Controls (ITGC), application controls, access management, change management, cybersecurity controls, and data governance.
Assess the design and operating effectiveness of network security and application-level controls within both clinical and administrative systems.
Provide supervisory oversight of the Information Systems Audit Unit — assign audit work, review working papers and draft reports for technical adequacy, and coach the Information Systems Auditor.
Configure and lead the use of TeamMate Audit and TeamMate Analytics platforms, establishing automated workflows and rules that govern the full audit lifecycle from planning through issue tracking and closure.
Handle technically complex IS audit assignments in direct partnership with the Internal Audit Manager, including major system implementations, cybersecurity assurance reviews, penetration testing assurance, and data migration controls.
Collaborate with the ICT Director and project teams to provide advisory and assurance input on Kranium HMIS and Navision ERP implementations and upgrades.
Identify and assess emerging IT risks across clinical systems, administrative platforms, and cyber infrastructure, ensuring findings are escalated appropriately and remediation is tracked to closure.
Prepare high-quality audit reports that clearly articulate root causes, risk ratings, and actionable recommendations for both technical and executive audiences.
Contribute to the development and continuous improvement of IS audit methodologies, tools, and quality standards within the internal audit function.

•Required Skills & Experience

Must hold a Bachelor's degree in Information Technology, Computer Science, Information Systems, or a closely related field.
Must possess at least 6 years of progressive experience in IT or information systems auditing, with demonstrated exposure to complex, multi-system ICT environments.
Must be certified as a Certified Information Systems Auditor (CISA); additional certifications such as CISM, CRISC, or CIA are a strong advantage.
Must demonstrate hands-on ability to audit ERP systems (ideally Navision/Microsoft Dynamics) and healthcare management information systems such as Kranium HMIS.
Must be able to configure and operationalise audit management platforms — specifically TeamMate Audit and TeamMate Analytics — including workflow automation and data analytics modules.
Must be capable of independently applying COBIT, IIA Standards, and ISO 27001 frameworks to IS audit engagements without supervisory guidance.
Must demonstrate proven supervisory or mentoring experience over junior auditors or audit teams.
Must be able to assess cybersecurity controls, interpret penetration testing reports, and translate technical findings into risk-rated audit observations.
Must be able to produce board-ready and management-level audit reports with clarity, precision, and appropriate technical depth.
Must have strong analytical skills with the ability to use data analytics tools to identify anomalies, trends, and control weaknesses across large datasets.

•Salary & Benefits

Nairobi Hospital offers a competitive remuneration package commensurate with the seniority of this role and the candidate's qualifications and experience. Based on Kenyan market benchmarks for senior ICT audit professionals in the healthcare sector, the estimated monthly salary range is KES 200,000 – 350,000. The Hospital is known for offering a structured, professionally rewarding environment with opportunities for growth within its internal audit function.

Competitive salary aligned to seniority and experience
Medical cover (implied by healthcare employer context)
Professional development and certification support
Stable, reputable institutional employer

•Who Should Apply

This role is ideal for a seasoned IS auditor who thrives in technically complex environments, is comfortable leading peers, and takes ownership of audit quality end-to-end. You are the right candidate if you have deep hands-on experience auditing enterprise systems, can independently apply audit frameworks, and are confident managing junior auditors while interfacing with senior ICT and executive leadership. Professionals transitioning from Big Four IT advisory or risk consulting backgrounds with relevant healthcare sector exposure are encouraged to apply.

Do not apply if you have fewer than 6 years of IS audit experience, lack CISA certification, have no experience with ERP or HMIS auditing, or are not comfortable with audit automation platforms and data analytics tools. This is not an entry-level or general IT role.

•How to Apply

Interested and qualified candidates should submit their applications before the closing date of 30 June 2026. Please quote the reference number REF: TNH/HHR/SSA/06/2026 in your application. Applications should include a detailed CV and a cover letter highlighting your IS audit experience, relevant certifications, and systems exposure. Submit your application through the Nairobi Hospital careers portal or via the official application channel indicated on their website. Important: Do not pay any fee, notarisation charge, or assessment cost at any stage of this recruitment process.

Requirements Breakdown

Must Have

Bachelor's degree in Information Technology, Computer Science, or related field
Advanced IS audit experience (5+ years), including IT General Controls, application controls, and access management
Demonstrated experience auditing healthcare systems, ERP platforms (Navision preferred), or critical clinical infrastructure
Proficiency with audit automation platforms (TeamMate Audit/Analytics or equivalent)
Professional certifications: CIA, CISA, or COBIT alignment; knowledge of IIA Standards and ISACA frameworks

Nice to Have

Experience with Kranium HMIS or similar healthcare management information systems
Cybersecurity audit and penetration testing assurance experience
Track record leading system implementation audits or data migration controls
Exposure to healthcare compliance standards (HL7, data protection, clinical governance)

Don't meet every requirement? Tailor your CV to close the gap →

Salary Context

Competitive mid-to-senior market rate for IS audit leadership in Nairobi

KES 200,000–350,000 monthly reflects strong positioning for a senior audit role at a tier-1 healthcare employer in Kenya. Salary variation depends on certifications (CIA/CISA), years of IS audit experience, and prior exposure to healthcare or ERP systems; candidates with cybersecurity audit depth or TeamMate platform expertise tend toward the upper range.

About Nairobi Hospital

Nairobi Hospital is one of Kenya's leading private healthcare institutions, internationally accredited and known for clinical excellence and digital innovation across East Africa. They operate sophisticated systems (Kranium HMIS, Navision ERP, PACS, LIMS) and prioritise robust governance and internal audit functions to maintain compliance and patient safety. Working here offers exposure to high-stakes healthcare IT environments and the opportunity to shape audit strategy at a healthcare leader trusted by Kenya's business and expatriate communities.

Likely Interview Questions

1
Walk us through a complex IS audit you led on a critical healthcare or ERP system—what were the control gaps, and how did you report findings to both technical and executive stakeholders?
2
Describe your experience configuring and deploying audit automation platforms (TeamMate or similar). How would you establish workflows to digitise our entire audit lifecycle from planning to closure?
3
How would you approach assessing IT General Controls and cybersecurity controls in a healthcare environment where uptime and data integrity directly impact patient care?
4
Tell us about a time you supervised junior auditors or coached an audit team. How do you balance technical quality review with development and delegation?
5
Nairobi Hospital is implementing upgrades to Kranium HMIS and Navision ERP. How would you structure assurance activities to cover design, implementation, and data migration controls?

Application Tips

Highlight specific IS audit engagements you've led on healthcare systems, ERP platforms (especially Navision), or clinical infrastructure—use metrics (number of findings, remediation rate, stakeholder impact).
Emphasise hands-on experience with audit automation tools (TeamMate, Teammate Analytics, Workiva, or equivalent) and your ability to configure workflows; describe a concrete automation project you championed.
Showcase your professional certifications (CIA, CISA, COBIT) prominently and reference your knowledge of IIA Standards and ISACA frameworks—align your audit philosophy with risk-based, standards-driven practices.
Include evidence of supervisory or coaching experience: mention team sizes managed, quality improvements in audit output, or junior staff developed or promoted.
If you have cybersecurity audit, penetration testing assurance, or data migration experience, lead with it—these are explicitly valued and will differentiate you from candidates with only general IS audit backgrounds.

Career Path

Roles that lead here

IS Auditor or Systems Auditor (3–5 years auditing IT controls, ITGC, and applications)

IT Risk Analyst or IT Controls Specialist (with audit or compliance background)

Internal Auditor (with IS/IT focus and progression into complex system audits)

IT Security or Cybersecurity Analyst (transitioning into audit and control design)

YOU

Where this leads

Head of Internal Audit or Chief Audit Executive (leading the entire audit function)

IT Risk & Governance Manager (broader digital risk and compliance leadership)

IT Controls & Compliance Lead (shift toward control design and regulatory alignment)

Consultant or advisory lead (leveraging audit expertise in healthcare IT governance or healthcare sector advisory)

Skills & Keywords

systems auditorit audit kenyacisa nairobierp audithealthcare it auditinformation systems auditsenior auditor nairobicobit audit

Honest Assessment

Green Flags

Tier-1 healthcare employer with proven digital infrastructure (Kranium HMIS, Navision ERP, PACS, LIMS) means exposure to high-stakes, complex audit environments and genuine impact on patient safety and operational resilience.
Clear expectation to champion modern audit practices (TeamMate automation, IIA Standards, ISACA/COBIT alignment) signals investment in audit maturity and positions you as a digitally forward auditor.
Salary range (KES 200,000–350,000) is competitive for senior IS audit roles in Nairobi and reflects investment in talent; leadership recognition and potential for upper-range placement based on certifications and experience.
Well-defined scope combining audit execution, team supervision, and strategic input on major implementations (system upgrades, cybersecurity reviews) offers technical depth, leadership growth, and influence over hospital-wide risk governance.

Watch Out

Job description cuts off mid-sentence ('Must hold a Bachelor's degree in Information Technology, Computer Scie')—full requirements and certifications are not visible; clarify mandatory vs. preferred qualifications before applying.
Role combines deep technical IS audit work with significant supervisory responsibilities and platform configuration; ensure you have genuine confidence in both audit leadership and automation tool expertise, not just one.
Reporting structure mentions reference number (REF: TNH/HHR/SSA/06/2026) but no explicit mention of career progression, training budget, or how performance is measured; ask during interview about development pathways and support for maintaining/upgrading certifications.

A Day in the Life

☀️

A typical week involves leading fieldwork on an ongoing ITGC audit of the Navision ERP system while configuring a new TeamMate Analytics workflow to automate evidence collection; you'll spend Tuesday morning reviewing draft audit reports from your junior auditor and coaching them on finding articulation, then Wednesday afternoon in a joint meeting with the ICT Director and Internal Audit Manager scoping controls testing for the upcoming Kranium HMIS upgrade. By Thursday, you're preparing a risk summary for the Audit Committee on emerging cybersecurity gaps in the billing platform, and Friday morning you're training the team on a new audit procedure aligned with COBIT 2019.

Frequently Asked Questions

What qualifications do I need to be a Senior Systems Auditor at Nairobi Hospital?

You must hold a Bachelor's degree in IT, Computer Science, or a related field; the job description specifies this but cuts off before listing additional certifications. Based on the role's complexity (CISA, CIA, or COBIT alignment are highly valued), expect that CIA and CISA certifications are either required or strongly preferred—confirm with HR. You'll need 5+ years of IS audit experience, including IT General Controls, application controls, and healthcare or ERP system auditing.

Is the Senior Systems Auditor role at Nairobi Hospital remote?

The posting specifies Nairobi as the location and does not mention remote work options. Given the supervisory responsibilities, hands-on audit fieldwork across hospital systems, and need to collaborate with the ICT Director and project teams on-site, this role is expected to be office-based in Nairobi.

How much does a Senior Systems Auditor earn at Nairobi Hospital?

The salary range is KES 200,000–350,000 per month (gross). Placement within this range depends on your certifications (CIA/CISA), years of IS audit experience, prior healthcare or ERP exposure, and depth in cybersecurity or audit automation tools.

What are the career growth opportunities for this role?

This role is a clear stepping stone to Head of Internal Audit or Chief Audit Executive positions within healthcare or larger institutional settings. You'll also develop expertise in audit automation, healthcare IT governance, and team leadership—skills that open doors to IT Risk & Governance Manager roles, healthcare compliance advisory, or internal audit leadership in other sectors.

What systems and tools will I work with as a Senior Systems Auditor at Nairobi Hospital?

You will audit and provide assurance over Kranium HMIS (healthcare management information system), Navision ERP, LIMS (laboratory information management), PACS (picture archiving and communication system), and billing platforms. You'll configure and lead TeamMate Audit and TeamMate Analytics platforms for audit automation, and you're expected to be fluent in IT General Controls frameworks and ISACA/COBIT standards.

Free Match Score