Cyber IT Audit Manager - AVP & VP

About the Cyber IT Audit Manager position:

This role will serve as a senior independent reviewer and will be accountable for providing high quality and in-depth analyses and observations to the business and supporting functions on behalf of the IT Team utilising the support of other team members where necessary. The role is to be an active participant and, where appropriate, leader of risk-based audit reviews, and will assist the IT Team to issue recommendations to remediate any identified issues and weaknesses.

Key Responsibilities

• Leads or acts as a key resource in IG (internal audit) assignments, ad-hoc projects and investigations, accountable for the timely performance of the role's own duties whilst also validating the work of other team members involved in an assignment. At all times, the role holder will have regard for the main risks detailed in the Risk and related Control Matrix and, where acting in a management capacity, will plan and organise an assignment (including the allocation of staff) as well as ensure that all missions, associated documentation and IG standard are inputted into relevant tools as required by the relevant processes.

• Completes other audit related tasks (such as the continuous/annual risk assessment or requests for audit recommendation closure, archiving, preparing restitution slides, and inputting findings, recommendations) to ensure that audits are effectively performed, maintained and coordinated within Groups Audit Methodologies and Tools, procedures, guidelines and expectations.

• Leads the performance of the continuous monitoring and annual risk assessment processes in relation to audit areas, working with senior team members (including the Deputy Head of Hub, IT) to ensure a consistent and compliant approach.

• Develops and manages operational initiatives within their business area, in line with relevant policies, procedures and any relevant regulatory requirements or professional codes of conduct.

• Keeps abreast of the best practices in the industry to drive innovation within the team, with the aim of contributing to the development of the tools and techniques used by the IG Department.

• Keeps relevant stakeholders, including the Deputy Head of Hub, IT and assignment Supervisors, suitably always updated on progress of assignments and work so that they have a good understanding of workstream status.

• Supports junior team members on assignments with their assigned work and contacting other members of the IG team and contributes to their development, including by preparing their end of assignment appraisals (PMRs) for discussion with the Deputy Head of Hub, IT.

• Monitors progress in relation to post-audit recommendations related to the IT and Cyber Security specialism to evaluate them as specified in the appropriate procedures and facilitates their closure.

• Develops and maintains strong relationships with key stakeholders in the teams being audited, andoperational managers across the business to ensure that a high-quality integrated IG service is provided.

• Acts as a point of escalation for more junior staff to support them where problems are more complex and require sophisticated analysis or experience to ensure that they can perform and provide a consistent service to the business.

• Will be required to provide certain managerial, coaching or appraisal functions for junior roles allocated to any assignments being led / resourced by the role to support the development of talent in the team.

• Contributes to the maintenance and development of the data analytics tools and methodologies used by the IT Audit team within IG.

Requirements

• Professional qualification required with knowledge related to performing IT and Cybersecurity audits in the banking / finance industry.

• Proven experience in IT and Cybersecurity risks and controls, either at a Bank or consulting firm, or other by conducting other relevant Internal/External Audits.

• Strong grasp of industry standards and regulations related to IT and Cyber. For example, NIST, PCI DSS, DORA, COBIT, ISO 27001 etc.

• Knowledge of a wide range of IG (Internal Audit) principles, processes, regulations and legislation appropriate for the IT team and ability to translate knowledge and experience into recommendations to improve team operating practices.

• Strong analytical skills, including ability to understand quickly the critical steps in a process, synthesise and process complex information and understand the related risks of various natures, including use of data.

• Good people management skills and an ability to work with individuals to set individual objectives and manage performance to ensure their delivery.

• Thorough and organised with an ability to project manager, prioritise and work under time-pressure.

• Excellent written and oral English skills to articulate technical issues and to be able to take the complex concepts and summarise it in simple English, to enable effective communication with individuals across the business.

• Ability to produce quality audit artefacts such as reports, findings and opinions for senior management.

• Computer literacy and a good knowledge of standard computer software and able to learn and utilise specialist applications appropriately.

• Intermediate level proficiency in Data Analytics or the use of AI to facilitate accurate analysis of large data sets.

Preferred competencies

• An academic background in IT, Management Information System, Computer Science or a related discipline.
• Beginner to Intermediate level proficiency in Data Analytics or AI prompting to facilitate accurate analysis of large data sets.
• Prior experience working in technical capacity (IT & Cyber) will be an advantage.
• A professional qualification / certificate in Audit (e.g. CISA, CISSP, CISM, OSCP, CCSP)

If the above role is of interest, please apply to this advertisement or email me your CV to or call me on to find out more.

Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates