Title: Director Internal Audit, Compliance and Risk Management (1 position)
Grade: UR 1
Reports: Technically to the Central Governing Board and administratively to the Secretary General
Location: Headquarters
Duration: Four (4) years
Job Purpose:
The Director Internal Audit, Compliance and Risk Management will be responsible for providing leadership in Internal Audit, Compliance and Risk Management services in order to advise Management and the Board to contribute towards adequate stewardship over the organization’s Assets while enforcing internationally accepted standards over the Organization’s systems, processes and practices with a view to minimizing process Risks and enhancing operational efficiency in line with the URCS Audit Charter and International Audit best practices.
KEY RESULT AREAS
Strategic Planning and Management
- Understands and shares URCS Vision, Mission & Values with Management Team and ensure understanding by subordinates and external stakeholders.
- Participate in the development of URCS’ strategic and annual business plans, identifying key risk areas and developing the URCS Annual audit plan in line with critical risks identified.
- Develop, review and operationalize the audit charter and Manuals for the effective running of an internal audit function;
- Develop the Key strategic milestones and ensure that the Business is leveraged to achieve the shareholder’s objectives managing the related risks effectively.
- Participate in the business planning, budgeting and review process ensuring that risk management is properly embedded in the process.
- Understand the business and ensure that its legal and corporate structure is intact at all times and related risks management to the acceptable levels
- Understand the stakeholders’ financial interests in URCS and ensure they are supported.
Financial Performance
- Understands the organization’s financial objectives and put in place Audit systems and procedures to protect its interests.
- Understands the business measures of success as perceived by the shareholders and integrate these measures in the Audit process.
- Ensure that the Internal Auditing, compliance and Risk Management function is undertaken in the most cost effective manner and that all work processes are undertaken within budget.
- Highlight all risks that might affect the organization’s ability to achieve its objectives in a timely manner.
- Recommend initiatives from the audit, compliance and risk management processes to ensure that the financial objectives of the organization are met.
- Apply best practice standards to the audit process.
Risk Management and Compliance:
- Facilitate development of an appropriate risk strategy and appetite of the organization.
- Lead the annual risk assessment and planning process to develop the risk-based audit plan and ensure the plan is responsive to and aligned with the risk profile of the Company.
- Proactively inform senior management of significant risks or exposures related to internal controls, compliance, and/or governance requiring prompt attention.
- Facilitate continuous identification and periodic assessment of business risks in the operating environment and update the risk registers.
- Monitor and report on key risk indicators (KRIs) and implementation of risk mitigation strategies.
- Design and implement an Internal Control Framework.
- Manage and oversee internal control activities
Internal Audit
- Lead Internal Audit’s change initiatives by implementing action plans related to risk assessment and annual audit planning, audit execution, audit reporting, audit staff recruiting and development, audit technology, and Board reporting.
- Oversee the execution of individual audits defined in the audit plan ensuring the highest level of quality
- Obtain approval of the risk-based annual audit plan from the Board. §Issue all Internal Audit reports ensuring the reports are clear, concise, identify root causes with practical solutions, and ultimately provide value to management.
- Meet regularly with the Board to report the status of Internal Audit’s ongoing monitoring activities, educate/inform the Board of emerging risks and/or exposures (whether internal or external to the company) that should be considered, and serve as a “thought leader” with respect to risk management and internal control best practices.
- Manage the process to track, follow-up, and ultimately close all open audit issues leveraging the Board, if necessary.
- Oversee Internal Audit’s participation in critical business and technology initiatives and projects ensuring that the audit’s perspective is effectively voiced and appropriate controls are designed and implemented on a proactive basis.
- Coordinate the activities of external auditors including how best to leverage the work
performed and results produced from Internal Audit’s work. - Actively participate in executive management meetings and/or committees to ensure that
Internal Audit is well-informed of key business developments that could have an impact on audit priorities and/or plans. - Ensure that Internal Audit is performing its work in accordance with established professional standards and remain abreast of emerging trends and best practices that can be incorporated into the function.
Auditing, compliance and risk management Process
- Understands the areas or processes that present Risk to URCS and initiate and implement programs to manage Risks to acceptable levels.
- Responsible for risk policy, capital management, risk analytics and report.
- Develop Enterprise Risk Management strategies to ensure mitigation of risk and compliance.
- Develop annual audit plans to assess the organization risk and compliance levels.
- Develop risk and compliance audit programs and monitors its implementation
- Ensure URCS compliance with International standards requirements and playing key role towards the formulation of relevant internal policies and standards.
- Ensure the enforcement of risk management policies and limits to close significant gaps in risk management capabilities.
- Evaluate the usage of URCS information system and security policies, procedures, and processes by users to ensure total compliance.
- Plan a comprehensive audit and risk management program for the Board Finance Committee.
- Design and schedule annual risk based audit plans and oversees their approval and implementation.
- Develop and implement comprehensive risk based audit programmes to provide adequate audit coverage for all key areas.
- Initiate and implement a systems approach in Audit and Risk management that emphasizes the prevention of losses and avoidance of Risk as opposed to reporting on “after the event” on issues.
- Ensure operational matters of internal audit and risk management are effectively and comprehensively carried out to ensure procedures implementation, compliance, improvement and investigation for better custodianship of URCS assets, operations and interests.
- Ensure that every process in URCS is supported by documented SOPs (Standard Operating Procedures) and that all units comply with these SOPS.
- Keep abreast of developments and trends in the Internal Auditing and Risk management profession and ensure that the organization benefits from these trends.
- Review internal auditing and risk management techniques and approaches continuously to improve their efficiency and effectiveness.
QUALIFICATIONS/REQUIREMENTS
Minimum qualifications, working experience and competencies:
Education Qualifications
- Minimum of Master’s Degree in Accounting, Commerce, Finance, Economics or other related field from an approved, recognized and reputable university.
- Full professional Membership of a recognized Accounting body e.g. CIA, CISA, CRMA, ACCA, CPA, CA and CIMA is MUST.
- Membership and affiliation in professional bodies like Institute of Internal Auditors and Global Association of Risk Professionals
Essential Experience
1. Minimum of Ten (10) years’ professional experience in Audit or Finance; five (5) of the years with managerial responsibilities in Audit, Compliance & Risk Management.
2. Experience in using Financial Management Information Systems (NAVISON accounting package is
an added advantage).
Core Competencies.
1. Accountability
2. Communication
3. Organizational awareness
4. Leadership
5. Managing performance
6. Political awareness
7. Analytical thinking
8. Strategic planning
9. Judgment and decision making
10. Managing resources.
knowledge and Skills
1. Extensive knowledge of NGO operations and Knowledge of current auditing practices and trends
2. Budgeting and budgetary control;
3. Financial analysis;
4. Donor financial accounting procedures
5. Operations of sub grant partners/community based organizations;
6. Accounting Procedures and Standards;
7. Computerized Accounting Systems and Spreadsheet;
8. Asset management;
9. Payroll management;
10. Donor financial accounting procedures
11. GAAP, IAS/AFRS accounting requirements and budgeting;
12. Tax laws and systems in Uganda
Please send your filled application form and attach your academic transcripts and certificates. The filled application forms and academic transcripts and certificates can be e-mailed to; vacancies@redcrossug.org or hand delivered, and or by post to:
The Secretary General,
Uganda Red Cross Society,
Plot 551/555 Rubaga Road,
P.O. Box 494, Kampala, Uganda.
Email; vacancies@redcrossug.org
Closing date for receipt of the applications is 22nd June 2026 at 5:00 p.m.
