What you will do:
The Internal Audit Manager – Technology Assurance provides, independent assurance to the CEO and the Board. They plan and deliver audits on the design adequacy and operating effectiveness of the core processes and controls in respect of IT, Cybersecurity, Information Security, Data and Change Management, and whether these are within the Risk appetite of the Bank.
1. Lead the planning and delivery of Cybersecurity assessments covering network security, endpoint protection, cloud security, security incident response, and threat management capabilities. tech
2. Plan and deliver audits across core banking systems, applications (including AI applications), operating systems, networks, and databases.
3. Contribute to the annual Internal Audit Plan and help build and maintain a multi-year risk-based view of audit work
4. Monitor and influence timely remediation of findings by the business, review closure evidence to confirm the required improvements have been made
5. Attend and contribute to relevant business committee meetings and build strong stakeholder relationships across the Bank, whilst maintaining independence
6. Stay up to date with relevant emerging trends and industry practices to proactively identify potential risk areas. Maintain strong standards of documentation, supporting audit conclusions in compliance with the Global Internal Audit Standards, Internal Audit charter and methodology
7. Contribute ideas and feedback to enhance all aspects of IA operations
And... we are a bank, so risk is a part of everything we do. We love people who take responsibility, do the right thing for customers, colleagues and Metro Bank, and can call out any concerns.
What you will need:
8. Understand the risks associated with your job and what that means for you, Metro Bank and all our stakeholders
9. Strong experience with Technology & cyber/information security frameworks, controls, threat landscape, and their audit
10. Excellent written (including report writing) and verbal communication skills, with an ability to translate technical concepts for non-technical audiences
11. Strong analytical skills combined with project management and organisational skills within an Agile/DevOps environment
12. Familiarity with AI, data governance, data quality, and data privacy regulations.
13. Knowledge of internal controls and risk standards, NIST
14. Knowledge of IT infrastructure, cloud platforms, networks, databases, and applications
15. Professional qualification such as CIA (Certified Internal Auditor), CISA (Certified Information Systems Auditor), or CISSP (Certified Information Systems Security Professional) or equivalent, would be desirable
Our promise to you…
16. We believe in “one in, one up” at Metro Bank, growing our own and promoting from within. That is why we are looking for YOU! An AMAZEING colleague to move into this FANtastic new role!
17. We will make sure that you are well-rewarded by providing you with a competitive salary, discretionary annual bonus, and a wide range of benefits, including generous holiday allowance, attractive pension scheme, healthcare, life assurance, and a number of colleague discounts!
18. We will give you the training to ensure you succeed in your role and plenty of internal opportunities to progress your career (around 40% of our recruitment comes from internal promotions!).
19. We are also all about balance so most of our jobs offer the opportunity for hybrid working built around your role and home life, wherever possible.