Key Responsibilities
Audit Practice
- Take responsibility for the performance of audit plans in areas of assigned responsibility, as well as for ad-hoc engagements
- In alignment with the Global Audit Plan, lead and execute complex audit assignments, supervise audit projects (IT and integrated audits), define risk-based audit areas, audit business transactions, workflows, processes and control systems as well as infrastructure and network
- Determine deficiencies and vulnerabilities to be remedied, analyze audit results, develop proposals for solutions, lead closing meetings
- Ensure progress as planned and in line with applicable standards
- Support and drive continuous improvement of audit function
- Comply with audit policies and respective standards (independence, integrity, confidentiality, truth and fairness, security, economy, system conformity)
Quality Management
- Ensure audit recommendations are implemented adequately by the auditee, so that the findings can be closed in a timely manner
- Support the update of audit methodologies, initiate improvements of workflows, processes, security controls and promote best practice sharing
- Analyze audit results and generate quarterly and annual audit reporting
- Support and review auditor's work (audit preparation, interviews, tests, evidence gathering, report writing and validation preparation)
- Be a center of Excellence for IT Infrastructure & Network Management, Information Security, Cyber Security, IT General Controls, integrated audits, business application controls, system development methodologies, Business Continuity Management and IT best practices
- Plan and implement technical training and information sharing (team/peer)
- Identify emerging risks (both IT and business), new products and/or new businesses for inclusion in the annual internal audit plan
Relationship Management
- Take responsibility for relationships with auditees and become a recognized expert and partner to business
- Manage communication with stakeholders from all hierarchy levels
- Interact with external auditors in specific cases
- Collaborate on departmental and inter-organizational projects
- Encourage knowledge sharing across different business lines and bring value adding options to business
- Promote the companies Internal Audit as a competent and trusted partner and live out the companies Values (Entrepreneurship, Collaborative Leadership, Trust, Customer & Market Excellence)
Key Requirements/Skills/Experience
- Minimum 5 years professional experience in internal/external IT audit, or as IT consultant or equivalent
- University degree (or comprehensive experience) in Information Technologies, Business Informatics or equivalent
- Professional certification e.g. as CISA, CISSP, or in COBIT, ITIL would be an advantage
- Ideally in-depth knowledge of/ experience in Asset Management or financial services, including financial industry products and services, securities processing and related information systems
- Strong and broad IT skills (operating system, database, networks, programming, software deployment, web technology, information security and related security tools, general IT controls, IT governance)
- Strong intellectual and analytical skills and a very good understanding of processes, structures and the regulatory environment
- Excellent communication skills are essential, as well as the talent to empathize for the auditee's perspective and ability to listen
- Ability to deal with all types of personalities and experience in managing escalation processes after delivering inconvenient decisions
- Team spirit, self-motivation and a proactive and committed working style, as well as ability to interact in a global work environment with people from different countries and cultures
- Excellent English communications skills (verbal and written); German language skills would be beneficial
- Willingness to travel up to 40 %
