Profile:
1. Educated to degree standard and holder of a professional qualification (usually CISA, CISSP, ACA or ACCA, etc.) with strong technology skills and understanding of application controls.
2. Looking for an experienced IT Auditor with IT Infrastructure and/or IT Applications audit experience
3. An individual at Fully-Qualified level with IT Audit experience from any sector (ideally financial services or banking but hiring manager is open to candidates from outside of financial services)
4. The ability to clearly communicate IT issues to IT/ non-IT Management both verbally and in writing.
Responsibilities:
The IT Audit Manager is primarily accountable and responsible for the timely delivery of IT audit assignments. This includes:
* Preparation of planning material to ensure that the internal controls covering the key risks are appropriately tested in order to provide reasonable assurance to the Board, Group Management, Entity Management and other stakeholders, including regulators, that an effective internal control environment exists.
* Overseeing the work performed for the audit assignment by other team members. Providing guidance and support to team members as necessary.
* Directing testing to cover key areas of risk and determine the scope and focus in agreement with the Audit Partner of the review, and share expertise in their area with other team members.
* Preparing draft Audit Control Recommendations for review by AD Management. The ACRs must be factually accurate and clearly communicate the findings and recommendations. The IT Audit Manager must clearly communicate the issues to AD Management and then to business Management including senior stakeholders. In doing so, the IT Audit Manager may experience some significant challenge and must therefore be resilient and articulate in their presentation of the issues.
* Preparing the final internal audit report. The report must clearly communicate areas of positive assurance, as well as areas where improvement in the internal control environment is required.
* Undertaking follow-up and closure of internal audit recommendations. This process requires the validation of action taken by line Management for the closure of all High and Moderate Priority recommendations and the provision of assistant and guidance to Management.
* The IT Audit Manager may be also asked to assist the Director/ Executive Director with maintaining relationships with Senior Management (D, ED and MD level) in a nominated area of responsibility, have insight into business activities and be able to comment on key areas of risk for those business areas.
* The IT Audit Manager will also be expected to contribute to Audit Department initiatives and work collaboratively across EMEA.
Experience / Skills / Knowledge Required:
Educated to degree standard and holder of a professional qualification, (usually CISA, CISSP, etc.) with strong technology skills and an understanding of applications controls.
The ability to clearly communicate to senior Management both verbally and in writing audit issues and to gain the confidence and trust of Management in their relationship management role.
The role holder needs to have a good operational knowledge in some aspects of the Bank to enable them to identify control weaknesses and advice on best practice/ process improvements. Have technical expertise and demonstratable knowledge of Cyber Risks. And a clear understanding of the risk and internal control environment relevant to the information technology being audited which may include:
* Firewalls (Check Point, Palo Alto, Cisco)
* Networks (Cisco)
* Windows including Azure
* Office 365
* Unix/Linux
* Database Management Systems (Oracle, SQL Server)
* IBM Websphere
Attention to detail. The confirmation of factual accuracy and a clear understanding of how the facts should be interpreted is essential.
Be able to apply knowledge and skills to other areas and interpret these in the wider context. Be a trusted advisor to the business and undertake problem solving in own role. Advising on possible control solutions and, being able to balance competing demands.
Previous IT audit experience is required to demonstrate a track record in effective internal audit delivery and management. #J-18808-Ljbffr