Job Summary
This role is responsible for contributing to the development, definition, and completion of internal audit plans from an IT perspective. The successful candidate will ensure alignment with organisational risk priorities and the IT landscape.
Key Responsibilities
* Conduct IT aspects of internal audit reviews and special investigations to assess the technological landscape and identify relevant risks and inefficiencies.
* Clearly communicate audit results, including agreed-upon recommendations and action plans to address improvement areas.
* Perform IT consultancy engagements and projects, including leading risk workshops, providing insights on documentation, advising on policies and procedures, and training on IT governance, risk and control issues.
* Ensure the effective implementation of agreed management action plans to address identified risks and inefficiencies by following up on recommendations raised within the established timeframe.
* Contribute to enhancing the IT risk culture as well as integrating IT risk management into day-to-day business activities and processes.
* Develop and maintain strong Business Partnerships with key stakeholders, and contribute to the professional development of the audit team by sharing knowledge and information.
Requirements
* Graduate-level qualification with 6 to 10 years of external, internal audit or relevant operational experience.
* CISA qualification a must; ISO 27001 training and Certified Internal Auditor (CIA) qualification are desirable.
* Advanced knowledge of the International Professional Practices Framework (IPPF) and related standards.
* Demonstrated experience in assessing risks and processes in complex IT environments, including digitalisation initiatives.
* Strong understanding of IT infrastructure components, cybersecurity frameworks, and emerging banking technologies.
* Proficiency in technology concepts and collaborative tools.
* Able to distill technical concepts into clear language for all stakeholders.
* Demonstrable independent mindset with the ability to convince and challenge the status quo constructively.
* Effective communication and interpersonal skills.
* Self-motivated with the ability to perform effectively under pressure and adapt to changing circumstances.
* Fluency in French and English; other languages considered an asset.
About the Role
In this role, you will have the opportunity to work closely with key stakeholders to enhance the IT risk culture and integrate IT risk management into day-to-day business activities and processes.
You will be responsible for staying updated on industry and regulatory developments to maintain a high level of commercial acumen and effectively advise the organisation.
This is a challenging and rewarding role that requires a strong understanding of IT infrastructure components, cybersecurity frameworks, and emerging banking technologies.