Are you an IT Auditor? Would you like to advise committees on the best course of action to minimise technical risk? Can you drive a multiyear risk based audit plan? If yes, then we may have the role for you.
As a Lead Internal Auditor within Technology risk you will be responsible for providing independent assurance over technology risks for the Bank. You will work collaboratively with colleagues to ensure that the IT governance and risk management framework is appropriate, policies and procedures are applied consistently, to deliver amazing customer service and innovative approaches to auditing technology risks across the Bank.
Depending on the team, most of our roles offer flexible working.
So what would you be doing?...
•Supporting the Director of Internal Audit in discharging its responsibilities to the Audit Committee.
•Driving a multi-year risk-based audit plan that provides a program of audit work covering the key aspects of technology assurance in line with stakeholder, industry and regulatory requirements.
•Scoping and delivering high quality audits over the Bank’s systems and infrastructure.
•Writing high quality audit reports identifying gaps and areas of improvements.
•Maintaining strong standards of documentation, supporting audit conclusions in compliance with IIA requirements.
•Attending relevant committees and to keep up-to-date on regulatory changes and industry best practices.
•Contributing to information sharing across the internal audit team.
You need to be this kind of person…
•Passionate about providing unparalleled levels of service and convenience for customers
Able to work and learn quickly in a fast paced, fun and dynamic environment
•Prepared to stick at something – we get nervous if someone has jumped from job to job as we want people who are prepared to learn and grow
Care about doing a great job and exceeding expectations with the quality of what you do
And... we are a bank so risk is a part of everything we do. We love people who take responsibility, do the right thing for customers, colleagues and Metro Bank and have the courage to call out any concerns.
We always support colleagues to develop their skills. But to be successful in this job you really do need to already be able to do most of these wonderful things…
•Understand the risks associated with your job and what that means for you, Metro Bank and all our stakeholders
•Naturally, you will have strong experience of auditing technology, systems and particularly Cloud technologies
•Experience of payment scheme attestations
•To be successful in this role you will need experience of cyber audits and technologies
•In order to hit the ground running you will need amazing communication and report writing skills
•You will need experience of certification programmes and payment scheme attestations (e.g. ISO 27001, PCI-DSS, FasterPay, Link, Bacs)
•Additionally, you will have an understanding 3rd party reporting and attestations (e.g. SOX, ISAE 16 reviews)
•CISA, CISM or CISSP would be desirable but not essential
Share it: