
Strategic, results-oriented, and highly skilled Technology Risk Assurance Manager with over years of progressive experience in global consulting firms, including EY, BDO, PwC, and KPMG. Proven ability to lead complex IT audit and risk engagements, drive SOX compliance programs, and assess IT controls across various sectors such as financial services, insurance, manufacturing, public sector, logistics, and health. Demonstrated expertise in project management, stakeholder engagement, and developing high-performing teams. Certified CISA, PRINCE2 Agile Practitioner, and COBIT 5 professional with a deep understanding of IT governance, cyber risk, core banking systems, and business process controls. Recognized for delivering value-added
insights and driving continuous improvement in audit quality.
• Spearheading the delivery of IT SOX audit programs by setting strategic directions, reviewing
methodology, and overseeing execution to ensure alignment with client risk and compliance
objectives.
• Providing strategic oversight on ITGC and ICFR audit planning, collaborating with Financial
Audit leadership to define testing strategies and integrate IT risk considerations into the
broader audit approach.
• Leading the end-to-end management of SOX 404 engagements, ensuring high-quality
documentation, risk-based scoping, and timely delivery of key milestones.
• Proactively identifying and evaluating internal control weaknesses, gaps in documentation,
and other IT-related audit exceptions, ensuring issues are communicated effectively and
remediated appropriately.
• Partnering with Directors and Partners to maintain and enhance SOX IT Risk and Control
Matrices (RCMs), test plans, and automated documentation tools across client portfolios.
• Managing geographically dispersed teams of IT auditors, providing coaching, performance
feedback, and technical oversight to ensure consistent execution and professional growth.
• Driving the adoption of tech-enabled audit approaches, leveraging data analytics and
automation to enhance efficiency, coverage, and insights in areas such as ITGCs, application
controls, and cyber risk.
• Maintaining rigorous quality standards by reviewing and challenging team outputs, ensuring
audit work is robust, risk-aligned, and defensible under regulatory and internal quality review.
• Delivering value-added reporting and insights to clients’ executive leadership and audit
committees, positioning the firm as a trusted advisor on IT risk and governance matters.
• Acting as regional coordination leading, supporting Technology Risk Assurance teams across
markets to ensure consistent delivery quality and scalability of services across the pipeline.
• Championing people leadership by developing talent, leading training initiatives, and building
an inclusive, high-performing culture aligned with the firm’s values.
• Serving as a key escalation point for complex technical and delivery issues, providing risk-
informed solutions and strategic judgment in collaboration with senior leadership.
• Contributing to innovation by enhancing audit methodologies, embedding best practices, and
introducing emerging technologies and frameworks to maintain competitive service delivery.
• Representing the firm in client-facing and industry forums, supporting marketing initiatives,
cross-functional solutioning, and business development efforts to expand the firm’s footprint.
• Staying ahead of emerging technology trends, cybersecurity threats, and regulatory changes,
and translating insights into strategic value for the firm and its clients.
• Increased revenue by $4M by implementing integration projects and meeting aggressive
budget constraints.
• Leading teams in executing audit methodologies and developing key internal and external
audit deliverables to complete the annual IT SOX audit plan for clients.
• Reviewing key IT controls based on Internal Controls over Financial Reporting (ICFR)
program requirements and discussing related testing approaches with the Financial Audit
teams and SOX Audit management.
• Managing a team of IT Seniors and Staff in both domestic and international locations.
• Effectively planning and executing SOX 404 IT general controls program.
• Identifying internal control deficiencies, inadequate documentation/evidence, and other
irregularities.
• Working with the SOX Audit Directors and Partners to implement and maintain SOX IT
RCMs, test plans and supporting documentation into the SOX tool.
• Planning and budgeting accurately to provide business with resources needed to operate
smoothly.
• Maximizing performance by monitoring daily activities and mentoring team members and
assisting in organizing and overseeing assignments to drive operational and client’s
excellence.
• Developing and maintaining relationships with clients through business development.
• Monitoring and analyzing client performance to identify areas of improvement and make
necessary adjustments.
• Developing and implementing business strategies to achieve business goals and stay
competitive.
• Communicating clearly with employees, clients, and stakeholders to keep everyone on the
same page and working toward established business goals.
• Streamlining and monitoring quality programs to alleviate overdue compliance activities.
• Successfully managing budgets and allocated resources to maximize productivity and
profitability.
• Leveraging data and analytics to make informed decisions and drive business.
improvements.
• Establishing performance goals for employees and providing feedback on
methods for reaching those milestones.
• Using industry expertise, client service skills and analytical nature to resolve client
concerns and promote loyalty.
• Evaluating employee performance and conveying constructive feedback to improve
skills.
• Maintaining positive client relations by addressing problems head-on and
implementing successful corrective actions.
Successfully led a team for a number of financial services, insurance, and manufacturing industry IT external audit engagements (half-year and year-end audit). My responsibilities
included assigning responsibilities to team members, management of engagement time and
fee (budget), scheduling and attending meetings with key management personnel, review
of IT governance, management, and operations, performing test of general and application
IT controls and substantive tests on significant general ledgers (GL) lines.
• Successfully led a team for an IT internal audit engagement across Kenya, Rwanda,
Burundi, Tanzania, Ethiopia, and Uganda clients. My responsibilities included assigning
responsibilities to team members, management of engagement time and fee (budget),
scheduling and attending meetings with key management personnel, review of IT governance,
infrastructure, operations and performing test of general and application IT controls on
different systems. Performed IT due diligence as part of a financial due diligence for one of the
Tier 1 and 2 banks in the financial services industry in Kenya. This involved the review of
information systems environment, IT planning and control, key systems and platforms,
organization resilience, alternate delivery channels, facilities
management, IT initiatives and maintenance cost.
• Responsible for the evaluation of test of design, implementation and operating
effectiveness of IT controls embedded in client's business processes, application systems
and general information technology platforms (i.e., operating systems and databases).
• Performed data/revenue assurance for a number of clients both in the financial services and
manufacturing industry.
• Successfully provided project management services for the implementation of COBIT 5
Framework across Equity Bank and its six subsidiaries across Africa.
• Worked with a Senior Manager and Partner to deliver quality assurance services for one of
the Banks implementing a core banking solution. My responsibilities include continuous
monitoring of project timelines, risk, and activities; participating actively in project
decision making meetings; reviewing project documents for quality standards; guiding and
advising the project management office using the global project management standards.
• Performed analysis of customer central liability report (loan portfolio) to identify performing
and non-performing risk assets for varied clients in the financial services industry.
• Successfully developed ICT policies and procedures for some of government institutions
in Kenya.
• Performed IT assessment and current state assessment engagements for varied clients in
the financial service industry.
• Performed internal audit for one of the largest banks in Kenya.
• Participated in assessment Center interviews and training for some new hires.
• Possesses knowledge and experience of auditing client’s internal control
procedures.
• Possess knowledge and experience in the development of business continuity strategy
and plan.
• Possesses very good knowledge of auditing core banking systems. This includes
Finacle, T24 and Flexcube.
• Good knowledge of auditing Core banking systems. This includes T24 and
FlexCube.
• Possess strong data analysis and problem-solving skills.
• Possess advanced skills in the use of computer assisted audit techniques (CAAT)
such as interactive data extraction and analysis (IDEA) software.
• Possess a strong knowledge of PMI and COBIT 5 framework.
Industry Knowledge: IT Internal Controls, SOX 404, IT Controls, IT Governance, IT Risk Assessment, Agentic AI
Technical Skills: SOX, ITIL, COBIT, ISO 27001
Soft Skills: Project Management, Team Building, Public Speaking, Time Management, Strategic Planning and Exceution, Excellent
Communication Skills, Conflict Management, Problem Solver, Self-motivated, Strong Presentation Skills, Proficient in Microsoft packages
Women Tech Global Awards 2025
Top 35 under 35 Youth of the year ICT category 2020