Global Markets, IT Audit - Assistant Vice President in London

Mizuho operates a Three Lines of Defence approach to risk management with Internal Audit forming the third (and last) line. Internal Audit operates independently to assess the effectiveness of key first and second line control processes. Within Internal Audit, the IT Audit team is responsible for assessing the design and operating effectiveness of the firm’s risk management frameworks and internal controls within the Information Technology (IT) and Information Security (IS) departments. This ranges from IT operations e.g. change and release management, IT Security e.g. Firewall and Cybersecurity configuration to markets and banking applications. We are seeking an ambitious auditor to join our IADE team. The main objective of the role involves evaluating the scope and design of the firm’s internal controls and testing their effectiveness. This is the perfect opportunity for a successful auditor to specialise, gain specific SME knowledge and to become a part of a growing function.

Duties and Responsibilities

• Conducting risk assessments and evaluation of internal controls to ensure compliance with regional and Japanese regulations.
• Assessing and analysing potential risks within processes and systems.
• Executing assigned testing procedures to assess the effectiveness of internal controls, identifying any relevant deficiencies, drafting audit issues and validating closure requests.
• Completing quality assignments to deadlines, and within budget.
• Supporting comprehensive planning and fieldwork of assignments across IT specific and integrated audits.
• Documenting findings, preparing work papers, communicating observations to management and contributing to/preparing draft reports.
• Collaborating with wider IADE and cross-functional teams to enable the implementation of corrective actions and improvement of internal controls.
• Actively engaging and maintaining positive relationships with stakeholders.
• Contributing to continuous monitoring (risk impact analysis) and gathering the appropriate data and information.
• Ensuring compliance with internal audit methodologies, quality standards, as well as legal and regulatory requirements across the region.
• Timely and accurate completion of assigned mandatory training and administrative tasks.
• Supporting IADE’s team objectives and initiatives.

Qualifications, Skills, and Experience

Experience

• At least 3 years work experience in internal audit and/or SOX.
• Knowledge of financial services industry/products is required.
• Securities/Markets business knowledge is an advantage.
• Knowledge and/or experience of the following areas is essential:
• Database MS SQL, Sybase, Oracle, MongoDB
• Virtualisation and Citrix based solutions
• High-frequency trading platforms, markets/banking applications.
• Cloud based SAS (both Public and Private implementation) solution exposure, including risk assessments. (AWS, MS Azure, GCP)
• Network Infrastructure review (Firewall reviews, Penetration testing review experience)
• Identity & Access Management.
• Voice & Telephony technology exposure and audit exposure
• Cybersecurity products exposure (CyberArk, Gaudium, Sentinel, Qualys)
• Operational Resilience including DORA, Data Centre Operations, Business Continuity and Disaster Recovery.
• Software Development Lifecycle Process.
• Knowledge of data analytics would be an advantage.

Qualifications

• Bachelor’s Degree or equivalent.
• Actively studying towards or possession of a professional auditing qualification such as Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Qualification in Computer Auditing (QiCA) or equivalent; and/or specialist certifications.

Skills

• Effective communication skills at all levels of the business.
• Great organisational and time management skills.
• Strong numerical and analytical skills.
• Demonstrated ability to innovate, support change and solve problems.
• Collaborative nature to contribute to a successful team performance.
• Language skills are an asset, but not essential.

What Mizuho can offer you

• Competitive starting salary, plus discretionary bonus
• Non-contributory pension
• 27 days’ annual leave
• Core working hours
• Hybrid working - office and home based
• Virtual GP
• Wellbeing benefits, including Mental Health Allies and First Aiders

At Mizuho we embrace flexible ways of working when the role permits. We offer different working arrangements like part-time, job-sharing and hybrid (office and home) working. Our purpose-led culture and global infrastructure help us connect, collaborate, and work together in agile ways to meet all our business needs. At Mizuho we are committed to supporting equality, diversity and equality, and seek to create a workplace that is fully inclusive. We welcome applications from all sections of the community that we operate in and from all ethnic backgrounds, sexual orientation, beliefs, gender identities and disabilities.