Welcome!! Register or Login
May 20 2018

    Job details

Job Offer: Senior Audit Manager (Technology, Cybersecurity, and Digital):

Job description:

Apply on Company Website

Senior Audit Manager (Technology, Cybersecurity, and Digital)

M&T BankBuffalo, NY5/17/2018
   » Save Job

Sign in Now
   » Email
   » Report

Job Description

Senior Audit Manager (Technology, Cybersecurity, and Digital)
Buffalo, NY

Function: This position is responsible for both strategic and tactical delivery of advisory and assurance services to management in the Technology, Enterprise Security, and Digital Banking portfolios, in line with department and industry standards and expectations. The Senior Audit Manager (SAM) will be responsible for superviseing continuing risk assessment, establishing internal and external relationships to remain in tune with emerging risks, best practices, and the evolving regulatory landscape, ensuring audit plan execution remains on track, coaching and developing Information technology Audit Management and staff, and owning the continuing evolution of the continuous auditing program within the aforementioned audit portfolios. As a member of the Audit Senior Management Team, this leadership abilities function supports continued enhancements to audit methodology, continuing stakeholder engagement, talent management, and overall promotion of the Audit Department within the organization.

Position The main responsibilities are:

• Manage all phases of audit coverage for the Technology, Enterprise Security, and Digital Banking portfolios;

• Maintain continuing consciousness of current and proposed discretionary initiatives within assigned portfolios to utilize as input to resource allocation and to share with the audit team;

• Support the risk assessment and plan development process to determine audit coverage;

• Assist the Information technology adjunct General Auditor (AGA) with special projects and department wide initiatives;

• Regularly interact with Senior, Middle, and Line Management in assigned portfolio(s) to remain aware of changing or emerging risks and proactively utilize this information in audit planning, to facilitate changes to the continuous auditing program, and to facilitate discussions with Executive Management when considered warranted;

• Establish and maintain relationships with external peers and members of professional associations to stay in tune with best practices in Information technology assurance delivery;

• Represent Information technology Audit on discretionary project committees to provide input on control expectations or advise on best practices;

• Work with management to implement appropriate solutions to audit findings and engage with Senior Management on matters that will have a major impact on the area managed;

• Support and encourage integrated auditing concepts and use of technology to improve the efficiency and effectiveness of audit procedures;

• Apply an in-depth knowledge of the inter-relationships of business and support units all over a financial institution and discuss potential impacts to the overall control environment and impacts to proposed audit approaches;

• Effectively communicate in order to influence a wide variety of audiences (including Senior and Executive management within assigned portfolios (e.g. CTO, CISO, CIO));

• Ensure comprehensive continuous auditing and validation procedures are in place on Internal Audit and regulatory issues;

• Provide appropriate level of oversight to Information technology Audit Management and staff. Provide coaching and developmental feedback and tailor approach located upon staff expertise and practice. Actively participate in overall staff development;

• Provide advisory and consulting services to Bank management on risk and control matters;

• Manage multiple tasks concurrently in an efficient and effective manner with minimal oversight;

• Ensure the delivery of clear and concise Audit Reports to management;

• Adhere to applicable compliance/operational risk controls in conformity with Company or regulatory standards and policies;

• Exercise usual authority of a Manager concerning staffing, performance appraisals, promotions, income recommendations, performance management and terminations;

• Promote an environment that supports diversity and reflects the M&T Bank brand; and

• Complete other related tasks as assigned.

Nature and Scope
this function reports to the Information technology adjunct General Auditor and supports the overall execution of the audit plan via high quality, timely and value-added audit services, which meet the requirements of the Audit Committee and regulatory expectations. This senior function also ensures continuing conformance with professional auditing standards. This position directly communicates with Middle and Senior Management, External Auditors, and Regulators. Builds strong partnerships with business stakeholders and other Audit team members. Operates independently with minimal AGA oversight to deliver on time, high quality audit reports.

Managerial/managery Responsibility
This position will have direct managery responsibilities for certain management and staff of the Information technology Audit team and may also provide coaching opportunities for certain audit professionals on other engagements.

Minimum Qualifications Required
Bachelors' degree in Technology/Accounting/Finance/Business, or related discipline and a minimum of 9 years' practice in a related function, inclusive of 3 years in a managerial function, or in lieu of a degree, a combined minimum of 13 years of higher education and/or work practice, including a minimum of 9 years' practice in a related function, inclusive of 3 years in a managerial function.
Ideal Qualifications Preferred

• Certification such as CISSP, CISA, ITIL, and PMP, as well as other technical vendor certifications is a definite asset;

• MBA or Master's degree in an appropriate field;

• Big 4 practice providing advisory or assurance services in the Technology Infrastructure, Cybersecurity, and/or Digital Banking spaces (preferably with Financial Services Industry practice);

• Strong practice in cybersecurity and technology infrastructure auditing (preferably in the banking/financial services sector);

• An knowledge of digital banking concepts and practice providing advisory and assurance services in the digital banking space;

• Knowledge and practice in auditing the following technologies/services:
o Firewall systems, intrusion detection/avoidance systems, data loss avoidance (DLP) technology, anti-malware solutions, security information and event management (SIEM) and incident response solutions, threat intelligence platforms, vulnercapability management solutions, identity and access management platforms, proxy services solutions, DDoS mitigation services, Active Directory, Windows Server, Unix/Linux Server, virtualization technology, Storage Area Network (SAN) environments, enterprise data backup solutions, Microsoft Exchange email systems, network infrastructure systems (routers, switches, DNS, DHCP, Load Balancing systems, LAN/WAN and Internet circuit infrastructure) phone systems (including VOIP), wireless network infrastructure, network management systems, SQL Server, Oracle, and DB2 database environments, mobile infrastructure systems, middleware technologies, VPN solutions, mainframe systems and related security products, file transmissions solutions, and/or production job scheduling systems.

• Working knowledge of information security/cybersecurity frameworks/standards such as ISO 27001 and NIST standards (inclusive of the CSF);

• knowledge of cybersecurity risk governance and cybersecurity risk management concepts;

• knowledge of managery expectations, regulations, and tools specific to cyber risk management practices (e.g. FFIEC Information technology Handbooks, FFIEC Cyber Assessment Tool, NYSDFS NYCRR 500 - Cybersecurity Requirements for Financial Services Companies, Fed/OCC/FDIC Advanced Notice of Proposed Rulemaking for Enhanced Cyber Risk Management Standards, GLBA 501B Requirements, etc.);

• Working knowledge of cloud computing risks and related controls frameworks;

• Working knowledge of API Management and connected risks;

• In-depth knowledge of ITIL Standards and core Information technology services such as change, problem, incident, and asset management;

• Excellent verbal and written communication expertise. capability to convey complex conceptual information/ideas on issues requiring broad interpretation and opinion. practice in applying appropriate discretion when dealing with sensitive issues and conveying technical concepts in an easy to understand manner;

• Proven capability in managing multiple audits, projects and initiatives simultaneously under tight deadlines;

• Proven leadership abilities expertise, with the capability to develop and motivate teams;

• Strong PC expertise; and

• Strong organizational and resource management expertise

• Demonstrates strong judgment, political astuteness, and sensitivity to cultural diversity.

• Possesses strong project management and interpersonal expertise, makes sound decisions, exhibiting initiative and intuitive thinking.

• Effective negotiation expertise, a proactive and 'no surprises' approach in communicating issues and strength in sustaining independent views.

• This individual must be an articulate and effective communicator, both orally and in writing, with an energetic, charismatic and approachable style.

• Strong leadership abilities expertise and capability to develop and coach others

At M&T, we strive to be the best place our employees ever work, the best bank our customers ever do business with and the best investment our shareholders ever make. So when looking to advance your career, look to M&T. As a top 20 US bank holding company and one of the best performing regional banks in the country, we offer a wide variety of performance located career development opportunities for talented professionals. And through our longstanding tradition of careful, conservative and consistent management and a strong commitment to the communities we serve, we continue to grow with a focus on the future.

Job Posting: Oct 16, 2017, 11:00:00 PM
Unposting Date: continuing

Job Snapshot

Employment Type Full-Time
Job Type Finance, Accounting, Management
Education 4 Year Degree
practice At least 9 year(s)
Manages Others Not Specified
Industry Banking - Financial Services
Required Travel Not Specified
Job ID 3DEF0

Apply on Company Website
Join Talent Network

Company Overview

M&T Bank
M&T Bank is a multi-state community-focused bank serving New York, Maryland, New Jersey, Pennsylvania, Delaware, Connecticut, Virginia, West Virginia and Washington, D.C. Founded in 1856, M&T Bank provides banking, investment, insurance and mortgage financial services to consumer, business and government clients.
Lgain More

Contact Information

Buffalo, NY
View All Jobs


Job Category: Customer Service [ View All Customer Service Jobs ]
Language requirements:
Employment type:
Salary: Unspecified
Degree: Unspecified
Experience (year): Unspecified
Job Location: Other
Company Type Employer
Post Date: 05/17/2018 / Viewed 3 times
Contact Information

Apply Online