Vice President Senior Audit Manager

EMEA Internal Audit Office (EIAO), as the Bank's third Line of Defence, and in accordance with the Global Institute of Internal Auditors (IIA) International Standards, provides independent assurance to the Board and Executive Management on the quality and effectiveness of governance, risk management and internal controls to monitor and mitigate key risks to achieving the Bank's objectives.

An exciting new opportunity has emerged for an Application Audit – Senior Audit Manager (VP) to join our IT audit team within the EMEA Internal Audit function. In this role the Senior Audit Manager will support the Chief Auditor and Audit Director by executing and delivering key Application related audit engagements and reporting issues to senior management.

• Planning and executing Application audits across the different Business Divisions and Functions, including managing the IT Audit team and working closely with Business Audit teams and delivering audits to budget and agreed timelines.
• Performing risk assessments and continuous risk monitoring activities across the technology control environment, as well as supporting the audit planning processes.
• To keep up to date with the evolving IT risk landscape through continuous learning and participation at key industry events / forums.
• Build and maintain trusted relationships with key stakeholders so that audit planning and delivery is achieved smoothly and professionally.
• Lead audit engagements to the required methodology standard.
• Provide ongoing feedback to the Audit Director throughout each engagement; escalates any performance related issues to the Audit Director. Coach junior team members on IT related topics as well as audit methodology requirements.
• Display strong appreciation of application and technology risk and control areas, promoting risk awareness throughout the Internal Audit department and among key stakeholders.
• Agree Management Action Plans with stakeholders, ensuring that remedial actions address the underlying root causes to mitigate the risks, and lead issue validation activities to verify that remedial actions are designed and operating effectively.
• Work collaboratively with all Internal Audit colleagues regionally and globally.

• Experience working in IT audit, or equivalent First Line risk and control role.
• Experience working in Financial Services is preferable.
• Deep understanding of Technology risk and control areas, including Identity & Access Management, Privileged Access, Change Management and SDLC, Data Integrity and Interfaces, Resilience & Disaster Recovery, End of Life and Capacity Management, and Application Functionality and Automated controls.
• Good understanding of business risks and controls and experience working with business audit teams.
• Strong knowledge of IT and Cyber Security risk Frameworks, such as NIST, COBIT, DORA, ISO27001.

• Relevant technology and industry qualifications e.g. CISA, CISSP, CISM, CIA are preferable.

• Excellent communication skills and the ability to influence senior stakeholders on risk and control issues.
• Strong risk and control focus with the ability to focus on the areas of highest risk.
• The ability to manage and prioritise large workloads and deliver to tight deadlines.
• Excellent attention to detail with a structured and logical approach to work.
• Strong decision making skills and the ability to demonstrate sound judgement.
• Results driven, with a strong sense of accountability.
• A calm approach, with the ability to perform well in a pressurised environment.