TF

Takudzwa Foto

Technology Risk Assurance Professional | Certified Information Systems Auditor (CISA)

Zimbabwe

takudzwafoto@gmail.com+263 783 252 733
LinkedIn

ABOUT

Results-driven Technology Risk Assurance professional with 4+ years of information systems and operational auditing experience in public accounting environments. Certified Information Systems Auditor (CISA) with proven expertise in planning and executing IS audit processes, documenting and testing general controls and application controls across diverse technology environments and delivering exceptional audit reports. Demonstrated ability to manage teams of professionals, build strong client relationships, and communicate technical concerns to strengthen controls and mitigate risks. Experienced in analysing system security and access controls, backup recovery procedures, and IS organization and administration practices within banking, financial services, retail, mining, and manufacturing sectors.

SKILLS

General Controls & Application Controls TestingAutomated Controls & Computer Assisted Audit Techniques (CAATs)Control Design & Operating Effectiveness AssessmentSarbanes-Oxley Act (SOX) Internal Controls ReviewIS Audit Planning & Execution
Risk Identification & Impact AnalysisSOC Reports Review & AnalysisCybersecurity Risk AssessmentsCOBITISO/IEC 27001NIST FrameworksBusiness Continuity & Disaster Recovery Planning
SAPOracleMicrosoft Dynamics 365FLEXCUBET24Sage X3Intellect
Oracle DatabaseSQLMySQL
Windows ServerUNIX
Microsoft Azure
Active DirectorySophosESET
Team Supervision & Workload ManagementClient Interviews & Relationship DevelopmentAudit Reporting & Executive CommunicationPerformance Evaluations & MentoringMulti-Project Management in Deadline-Driven Environments
Microsoft Office SuiteWordExcelPowerPointOutlookAudit Management SoftwareData Analytics Tools

EXPERIENCE

Senior Analyst - IT Audit & Advisory

2025-01 - Present

KPMG Zimbabwe • Zimbabwe

Currently serving as Senior Analyst in IT Audit & Advisory at KPMG Zimbabwe, progressing through roles from Junior Analyst (October 2022 - September 2023) to Analyst (October 2023 - December 2024) to current Senior Analyst position. Leading IS audit engagements for major clients across banking, financial services, retail, mining, and manufacturing sectors. • Planned and executed IS audit work on 10+ assigned engagements for major clients including Reserve Bank of Zimbabwe, CBZ Bank, NMB Bank, OK Zimbabwe, and Seed Co, supporting financial statement integrity and regulatory compliance • Documented and tested application controls and automated controls on wide range of software application packages including SAP, Microsoft Dynamics 365, Oracle, FLEXCUBE, T24, and Sage X3 • Performed walkthroughs of client controls and conducted client interviews to obtain relevant information for control assessment and risk identification • Assessed system security and access controls, backup recovery procedures, and IS organization and administration practices across complex IT architectures • Identified key risks and assessed their impact and likelihood of occurrence, communicating technical concerns and issues to IS Assurance management and clients • Prepared audit reports and recommendations associated with IS audit work performed, achieving 95% accuracy rate and ensuring compliance with audit standards • Identified opportunities to utilize computer assisted audit techniques (CAATs) and managed implementation of data analytics to enhance risk identification and audit coverage by 30% • Participated in review of internal controls based on Sarbanes-Oxley Act requirements, supporting SOX compliance initiatives • Supervised day-to-day workload of junior IS Assurance Associates on assigned engagements, reviewing work product and ensuring quality standards • Delivered periodic performance feedback and completed performance evaluations for IS Assurance Associates, contributing to team capability development • Acted as mentor to junior team members, providing training on IS Audit principles, guidelines, and software resources • Communicated to clients areas to strengthen controls, mitigate risks, and increase efficiency, resulting in 20% reduction in audit cycle times through process optimization • Documented controls, tests performed, and results in required workpaper format, maintaining compliance with professional standards • Developed and maintained strong relationships with client personnel and management across banking, financial services, retail, mining, and manufacturing industries • Managed engagement budgets and resources, improving delivery efficiency while maintaining audit quality • Reviewed SOC reports, conducted cybersecurity risk assessments, and performed audit follow-ups to ensure control remediation

Analyst - IT Audit & Advisory

2023-10 - 2024-12

KPMG Zimbabwe • Zimbabwe

Served as Analyst in IT Audit & Advisory at KPMG Zimbabwe, contributing to IS audit engagements and control testing across diverse technology environments.

Junior Analyst - IT Audit & Advisory

2022-10 - 2023-09

KPMG Zimbabwe • Zimbabwe

Started career at KPMG Zimbabwe as Junior Analyst in IT Audit & Advisory, building foundation in IS audit processes and control testing.

Mobile Financial Services Engineer

2022-06 - 2022-09

Telecel Zimbabwe • Zimbabwe

Supported system integrations and mobile banking system implementation with focus on IT architecture, application controls, and operational risk management in financial services environment. • Supported system integrations and third-party interfaces, strengthening understanding of IT architecture, application controls, and operational risks in financial services environment • Participated in testing, quality assurance, and user training for Cashlinq Mobile Banking System implementation, reinforcing SDLC controls and change management practices • Improved backend system performance, increasing transaction processing speed by 40% through system optimization • Reduced system downtime and transaction failures by 25%, enhancing system reliability and control effectiveness • Reviewed user access management, transaction monitoring, and data encryption controls during system implementation • Provided audit-focused recommendations aligned to governance and risk management principles

Electronic Channels Officer

2020-01 - 2020-12

FBC Holdings • Zimbabwe

Performed reconciliation and business intelligence analysis for electronic banking channels, supporting financial accuracy and operational controls within banking environment. • Performed daily and monthly reconciliation of electronic and card transactions, supporting financial accuracy and control testing procedures • Conducted business intelligence analysis to identify transaction failures, control weaknesses, and areas for process improvement • Supported electronic payment operations with strong attention to detail, responding to client queries and maintaining service quality • Improved online banking adoption by 30%, demonstrating ability to drive business results while maintaining operational controls • Gained foundational experience in financial systems, operational auditing, and internal controls within banking environment

EDUCATION

University of Zimbabwe

2018-02 - 2021-12

Bachelor in Business Studies and Computing Science