Senior Auditor IT Applications - Vice President

Join to apply for the Senior Auditor IT Applications - Vice President role at Sumitomo Mitsui Banking Corporation – SMBC Group.

SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries.

The anticipated salary range for this role is between $145,000.00 and $185,000.00. The specific salary offered to an applicant will be based on their individual qualifications, experiences, and an analysis of the current compensation paid in their geography and the market for similar roles at the time of hire. The role may also be eligible for an annual discretionary incentive award. In addition to cash compensation, SMBC offers a competitive portfolio of benefits to its employees.

SMBC is seeking an experienced IT Application Audit professional with a minimum of 5 years’ experience in the banking and finance/technology industry to conduct audit coverage for the firms IT applications. Coverage including both integrated business audits as well as stand-alone application audits. Opportunities also available to support Infrastructure and cybersecurity audits across the firm as part of the Internal Audit Department. Reporting to IT Applications Team Head, the Audit professional will be responsible for (i) conducting regular IT application audits, ensuring work is performed in accordance with IIA standards and Internal Audit Department (IAD) policies and procedures, and (ii) supporting the IT Application Team Head in the execution of their duties.

• Conduct regular audits of IT application related areas assessing adherence to firm and regulatory requirements and assessing design, operating effectiveness and sustainability of associated controls.
• Create audit issues and reports that clearly articulate results and conclusions for review with senior audit management and auditees.
• Challenge the ongoing coverage of IT application work and present ideas for improvement.
• Facilitate risk issue tracking to promote timely remediation.
• Perform issue assurance work for audit, regulatory, and self-identified to confirm closure or recommend additional actions.
• Work collaboratively with colleagues and auditees to identify risk concerns and agree reasonable solutions.
• Forge strong partnerships with colleagues in other IT application and control functions including legal, compliance, data security and risk management to promote front-to-back collaboration across risk assessment and findings remediation.
• Partner with audit colleagues in other business verticals and/or geographies to share best practices and drive greater consistency. Seek out opportunities to engage with stakeholders outside of formal audit periods to drive deeper relationships.
• Oversee quarterly and annual continuous monitoring / risk assessment process to identify technology trends and emerging risks, and when necessary, propose updates to the audit plan to reflect them.
• Assist with special projects related to business process improvements or departmental strategic initiatives.
• Conduct regular Continuous Monitoring activities and auditable entity updates.

• Minimum of 5 years of IT Application/Infrastructure/Cybersecurity audit experience in the banking and/or technology industry.
• Knowledge of IT application related risks and controls (i.e. General Controls, Interface Controls, Data Management and Security, etc…)
• Knowledge of industry relevant standards (i.e. NIST, CRI, etc...) and related regulatory expectations (i.e. NYS DFS 500, FFIEC, etc…)
• Knowledge of audit techniques, risk and internal controls assessment, and workpaper standards.
• Strong strategic thinking skills including the ability to identify and assess technology related risks.
• Ability to act as trusted advisor to IT application management using discretion and sound judgment in identifying, analyzing, and reporting problems.
• Excellent communication (both verbal and written), presentation and professional skills including the ability to interact effectively at all levels within the organization.
• Bachelor’s Degree in Information Technology, Finance, or related field. Advanced degree a plus.

D&I Commitment: Responsible for fostering a culture of diversity and inclusion, holding leaders accountable for creating an inclusive environment through awareness and practice of equity in recruiting, developing, and promoting diverse talent.

SMBC’s employees participate in a Hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location.

SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know at accommodations@smbcgroup.com.

Not Applicable

Full-time

Information Technology

Banking, Financial Services, and IT Services and IT Consulting