Audit Manager, IT & Cyber Security Audit

Full time @Scotiabank posted 2 days ago in Information Technology (IT)
  • 40 King Street West, Toronto View on Map
  • Post Date : April 27, 2025
  • Apply Before : May 9, 2025
  • 0 Application(s)
  • View(s) 5
Email Job

Job Detail

  • Job ID 12905
  • Experience  3 Years
  • Qualifications  Degree Bachelor
Bottom Promo

Job Description

Contributes to the overall success of the Emerging Risk & Cyber Security Audit in ensuring specific individual goals, plans, initiatives are executed / delivered in support of the team’s business strategies and objectives. Ensures all activities conducted are in compliance with governing regulations, internal policies and procedures. As an Audit Manager you will participate in the execution of risk-based technology audits, across Digital Banking, Cloud, and Architecture, of medium to high complexity to provide opinions on the effectiveness of controls to meet business objectives. In addition, you are expected to be knowledgeable in risks associated with systems development methodologies (Waterfall and Agile), cyber security, automation and orchestration, and outsourced IT services.

Accountabilities

The incumbent will be required to work as part of a team that assesses the design and operational effectiveness of governance and internal controls relating to the digital banking, cloud services, cyber security, data protection and management, outsourcing, infrastructure, and project management. Apart from the technical skills noted, the incumbent should be proficient at applying risk-based auditing standards, practices, techniques, processes, internal/external methodologies and regulatory guidelines to the performance and review of audits. The Bank’s Internal Audit Department plays a key role in the risk management process of the Bank.

A significant portion of the accountabilities will relate to providing assurance over the Bank’s cyber security and IT general controls across digital banking (web and mobile applications development) and cloud services in an Agile environment using SecDevOps, microservices architecture, and third-party outsourcing as follows:

Execute risk-based information technology audits of moderate to high complexity and conclude whether risks are appropriately managed through the existence of effective control or other techniques.

Follow the Audit Standard Guidelines of the Bank and specific application, project and operations audit methodologies.

Ensure that audit conclusions and recommendations are properly supported by an orderly accumulation and analysis of documented audit evidence, and that the audit report content is clear, concise and supported by the audit work completed.

Perform accountabilities with some supervision and provide audit management and audit client with regular status updates of the assignment. The incumbent is expected to seek and obtain direction, perspective and resources as required in order to complete the assigned audit on time and within budget.

Prepare and discuss audit findings with clients; identifying significant issues in a business context, working with audit clients to identify and recommend feasible solutions.

Establish and maintain positive relationship management with audit clients.

Maintain information security competency through ongoing professional development and staying abreast of technical matters in the industry.

Champions a customer focused culture to deepen client relationships and leverage broader Bank relationships, systems and knowledge.

Understand how the Bank’s risk appetite and risk culture should be considered in day-to-day activities and decisions.

Skills, Experience & Functional Competencies

3-5 years of experience in information technology, information security, cyber security, IT risk, IT audit or a related field.

Good knowledge of IT processes such as digital banking, cloud engineering and operations, IT and cyber security.

Excellent written and verbal communication skills.

Some knowledge and experience with security assessment tools (e.g., exploit tools, vulnerability assessment) would be an added advantage.

Ability to work independently and as part of a team of professionals.

Working knowledge of primary Bank business areas (e.g., retail banking) would be an asset.

Education and Other Requirements

Bachelor’s degree in information technology, computer science or equivalent required.

One or more of the following certifications: CISA, CISM, CRISC, CRMA, CCSPor working towards achieving these.

Good analytical skills and proficiency with Microsoft Word, Excel, and PowerPoint.

Bottom Promo

Required skills

CCSP CISA DevOps Microsoft Office

Other jobs you may like

 
Required 'Candidate' login to applying this job. Click here to logout And try again
 
 
 
 

Apply for this Job

  • Drop a resume file or click to upload.
    To upload file size is (Max 5Mb) and allowed file types are (.doc, .docx, .pdf)
    or
    Upload Resume
  • Upload Cover Letter

    To upload file size is (Max 1Mb) and allowed file types are (.doc, .docx, .pdf)

  • By clicking checkbox, you agree to our Terms and Conditions and Privacy Policy

 

Answers

 

Job Alerts

 

Account Activation

Before you can login, you must activate your account with the code sent to your email address. If you did not receive this email, please check your junk/spam folder. Click here to resend the activation email. If you entered an incorrect email address, you will need to re-register with the correct email address.