Manager, Independent Assessments, IT Audit (big four background)

Job Purpose

Responsible for planning and conducting Independent Assessments and audits undertaken by the IT audit function of Airstar Bank Limited (the Bank) and to report on the work done, results with detailed findings and recommendations. The candidate should be able to work independently on each Independent Assessment assignment and critically assess the Bank’s current situation against the stated assignment objectives.

Job Responsibilities

• Reporting to the Head of Internal Audit, the candidate shall plan and carry out Independent Assessment assignments of the Bank required because of either regulatory requirement, significant change or expansion of business initiatives or projects;
• Working independently, the candidate is required to plan, execute and report each Independent Assessment assignment and communicate aspects of the work with interested parties, stakeholders, senior management and regulators, as appropriate;
• The candidate is expected to have acquired the relevant knowledge and experience gained in Big 4 professional firms performing Independent Assessment work on banking institutions;
• Actively tracking and validation of the audit finding and remediation issues;
• Assist to prepare regular reporting package for Audit Committee meetings;
• Support the review and updating of audit policies and procedures;
• Support the provision of information for external review purposes;
• Handle ad-hoc assignment when required.

Job Requirements

• Degree holder preferably in Computer Science, IT or related disciplines; 
• Relevant professional qualification (e.g. CISA, CISSP, CCSP, CISM, CCAK) or other Cybersecurity qualification is required;
• Minimum 5 years' experience in IT Audit field specializing in regulatory independent assessment, preferably in Managerial positions of a Big 4 Bank consulting practice;
• In-depth knowledge of IT Security, bank audit requirements and bank regulations; 
• Experience with CRAF, Cybersecurity, Cloud security, Technology risk management is expected;
• Experience in mobile application, i-banking, payment system, operational resilience, and Anti Money Laundering (AML), fraud risk etc.is an advantage;
• Proficiency in developing and using data analytics, CAATs and performing system, and project implementation reviews;
• Good command in both written and spoken English and Putonghua;
• Analytical, proactive, good interpersonal skills, can work under pressure with minimal supervision.