Audit Manager, Information & Cyber Security

Kuala Lumpur
Tetap
Sepenuh masa

1 bulan lepas

Job SummaryThe Group Internal Audit & Investigations (GIAI) in Standard Chartered Bank is looking for a Technology Infrastructure Audit Manager with strong technical knowledge on servers, networks, databases, storage, and cloud services to join the Technology & Architecture (T&A) audit team.The Technology Infrastructure Audit Manager will primarily be responsible for executing audits related to the organization's technology infrastructure. This role involves evaluating the effectiveness of IT controls, ensuring compliance with regulatory requirements, and identifying opportunities for process improvements. The Audit Manager will collaborate closely with the Audit Team Lead or Team Manager on the audit assignment and deliver impactful and high-quality audit work within the agreed timelines, budget constraints, and in full alignment with established audit methodology. Furthermore, the Audit Manager will also be responsible for coordinating with various technology departments and providing strategic insights aimed at enhancing the organization's IT governance and overall risk management practices.Key Responsibilities

Support the Head of Audit (HOA) and Senior Audit Managers (SAMs) in GIA risk assessment and audit planning activities.
Suggest audits for coverage during the planning cycle based on key technology risks.
Execute responsibilities in accordance with the Audit Charter, maintaining independence from management and avoiding any interference.
Actively participated as a team member or leader in assigned audit work.
Ensured audit deliverables adhered to quality standards and timelines according to GIA methodology.
Drafted contributions to audit scope, including the Audit Planning Memo and Process Risks Controls Matrix.
Assisted in drafting the audit issues and report during the audit reporting phase.
Monitored the remediation of audit issues for assigned audits and validate issues as per the agreed timelines.
Support high-risk audits of Technology Infrastructure and collaborate with GIA teams.
Execute audits efficiently, adhering to budget and timelines.
Update Audit Team Lead and Manager on progress and obstacles, ensuring quality standards.
Work with Audit Team Lead and Manager to draft issues, articulate risks, and obtain action plans.
Conduct audit testing using data analytics.
Model valued behaviours and foster an environment that recognizes positive contributions.
Engage with peers to enhance knowledge sharing.
Seek external perspectives to improve audit work.
Provide expertise to support GIA audit teams.
Implement and support department initiatives, including planning and training.

Skills and ExperienceTechnologies

Platforms:

Operating Systems
Database
Storage

Networks:

Routers, Switches
Firewalls, VPN
Core network design

Virtualised Environment

Virtual Cloud Foundation
Network Virtualisation and Security Platforms * Middleware and Integration Services
Cloud Platform Security
Technology concepts and tools:

Technology Architecture
Infrastructure as Code
DevOps and DevSecOps
Central Observability Platforms
Audit
Risk and Controls

Qualifications

Education: Bachelor's degree in Information Technology, Computer Science, Information Systems, or a related field. A master's degree is a plus
Experience: Minimum of 5 to 7 years of experience in IT auditing, information security, or risk management

Technical and Soft Skills:

Strong understanding of IT infrastructure components, including servers, networks, databases, and cloud services.
Knowledge of cybersecurity principles, frameworks, and best practices.
Proficiency in audit tools and techniques.
Analytical Skills: Excellent analytical and problem-solving abilities with a keen attention to detail.
Communication Skills: Strong written and verbal communication skills to effectively convey audit findings and recommendations.
Interpersonal Skills: Ability to work collaboratively with cross-functional teams and build strong relationships with stakeholders.
Professional Certifications: Professional certifications such as Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Cloud Security Professional (CCSP), or Certificate of Cloud Auditing are highly desirable.
Familiarity with regulatory requirements and industry standards (e.g., ISO 27001, GDPR, SOX).

About Standard CharteredWe're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.Together we:

Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offerIn line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
Flexible working options based around home and office locations, with flexible working patterns.
Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.

Recruitment AssessmentsSome of our roles use assessments to help us understand how suitable you are for the role you've applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process.Visit our careers website32331

Standard Chartered

Memohon