IT Audit AVP: Cross-Function Controls Lead

Who we are United by a sense of purpose towards our customers - to be a trusted partner for the long-term - and our universal banking platform in EMEA, SMBC Group has an international growth agenda and award-winning products, meaning we provide exciting opportunities to work on a diverse range of projects and initiatives. We deliver a full suite of corporate finance products and solutions to our customers as well as investment banking and advisory services, and a range of innovative solutions in global capital markets. Read on to find out how you could enhance your skills and gain valuable experience, by joining us to support our clients transition to a sustainable future.

Role Summary Is the next step in your career at SMBC Group EMEA? We are looking for an Audit Cross-Function Assistant Vice President for our Internal Audit department.

Business Area Internal Audit are asked for an independent opinion on the changes and controls implemented by the organisations within EMEA Region, this role aims to provide insight and opinion on the key controls in operation in the business areas under review and therefore must have the expertise to provide advice and consultancy services as required.

Position Description This role is responsible for supporting the delivery of the planning, fieldwork and reporting for audit assignments as staff auditor under direction of the Auditor in Charge (AIC) and IT Audit Partners or act as an AIC under direction of IT APs. This will include highlighting key areas of risk, assessing established and new controls in operation over a range of activities in any business in EMEA Region, and outsourced IT functions.

Responsibilities:

• Preparation of planning material to ensure that the internal controls covering the key risks are appropriately tested in order to provide reasonable assurance to the Board, Group Management, Entity Management and other stakeholders, including regulators, that an effective internal control environment exists.
• Delivering controls assurance, testing and documentation; at times taking a lead role to manage parts or all of the audit coverage.
• Directing testing to cover key areas of risk and determine the scope and focus in agreement with the Audit Partner of the review, and share expertise in their area with other team members.
• Preparing draft Audit Findings for review by AD Management. The Audit Findings must be factually accurate and clearly communicate the findings and recommendations.
• The auditor must clearly communicate the issues to AD Management and then to business Management including senior stakeholders. In doing so, the auditor may experience some significant challenge and must therefore be resilient and articulate in their presentation of the issues.
• Preparing the final internal audit report. The report must clearly communicate areas of positive assurance as well as areas where improvement in the internal control environment is required.
• Undertaking follow-up and closure of internal audit recommendations. This process requires the validation of action taken by line Management for the closure of all High and Moderate Priority Findings and the provision of assistant and guidance to Management.

Requirements:

• Professional Experience: Minimum of 5-6 years in internal audit, with a focus on IT audits within financial services or a regulated environment.
• Technical Knowledge: Good understanding of IT governance frameworks (e.g., COBIT), cybersecurity principles, IT general controls, and regulatory requirements such as DORA or GDPR.
• Risk & Control Expertise: Ability to assess technology-related risks across infrastructure, applications, and third-party services, and design effective audit procedures.
• Analytical Skills: Proficiency in interpreting complex technical environments, identifying control gaps, and leveraging data analytics for audit testing.
• Communication Skills: Excellent written and verbal communication skills to articulate technical findings clearly for both technical and non-technical stakeholders.
• Leadership & Team Management: Proven experience in participating IT audit engagements and managing competing priorities.
• Stakeholder Management: Ability to engage with senior IT and business leaders, influence decision-making, and maintain strong professional relationships.
• Resilience & Professionalism: Capacity to handle challenging discussions and present issues confidently to senior stakeholders.

Preferred Experience:

• Industry Knowledge: Familiarity with banking technology environments, including core banking systems, cloud platforms, and cybersecurity practices.
• Regulatory & Compliance Expertise: Understanding of financial sector regulations impacting IT (e.g., DORA, PRA, ECB guidelines).
• Audit Tools & Technology: Experience with audit management systems, data analytics tools, and automated testing solutions.
• Payment Systems Expertise: Experience auditing SWIFT and/or payment systems, including associated security and operational controls.
• Project Management: Exposure to managing IT audit projects end-to-end, including planning, execution, and reporting.
• Professional Certifications: CISA, CISSP, CRISC, or equivalent qualifications are highly desirable.

Competencies:

• Customer Focus
• Driving Change
• Driving Results
• Embraces Diversity
• Enterprise Leadership
• Judgement and Decision Making
• Risk Management
• Strategic and Visionary
• Trust and Integrity

What we offer For all the expertise and experience you bring to help us make a difference, it's only sustainable if we support you to build your career and be your best self so we offer competitive company benefits, centred around promoting positive well-bring and work-life balance. We also believe in fostering a diverse and inclusive work environment, where all team members perspectives and contributions are valued. Initiatives in place which promote a diverse and inclusive culture and healthy work life balance include hybrid working, Sport & Social Clubs and Diversity and Inclusion networks.

• Hybrid and flexible working
• Competitive paid leave days
• Benefits to support your physical wellbeing, including private medical insurance and life and invalidity insurance
• Various policies to support your mental wellbeing, including a robust behavioural health network with counselling and coaching services
• Access a wide range of learning and development opportunities and career progression opportunities
• Ambitious remuneration package

Application Note So, if you like a challenge and want to continuously grow and develop in a role where you will be supported along the way by a dynamic and diverse team, apply today!!