IT Audit Consultant - Technology Infrastructure & Operations

About The Position

Requirements

• Bachelor’s degree, preferably in Accounting, Business, Finance, Technology, Cybersecurity, Mathematics, Statistics or other related technical field and 7 years of relevant experience, inclusive of 2 years of work leadership experience.
• In lieu of degree, a combined minimum of 11 years higher education and/or work experience including 7 years of relevant work experience and 2 years of work leadership experience.
• Demonstrates strong judgment, political astuteness, and sensitivity to cultural commitment.
• Possesses strong project management and interpersonal skills, makes sound decisions, exhibiting initiative and critical thinking.
• Specific subject matter expertise regarding internal audit disciplines or in one or more of the following Lines of Businesses (LOBs) such as Commercial Banking, Retail Banking, Mortgage, Consumer Banking, Wealth Advisory, Institutional Client Services, or support functions such as Treasury, Finance, Compliance, Technology, Operations, Risk Management, or Credit Administration.
• Effective negotiation skills, a proactive and 'no surprises' approach in communicating issues and strength in sustaining independent views.
• Articulate and effective communicator, both orally and in writing, with an energetic, charismatic and approachable style.

Nice To Haves

• MBA or Master’s degree in an appropriate field preferred.
• Related professional certifications (CIA, CPA, CISA, CISSP, cloud certification, or similar).
• Financial Services Industry experience preferred.
• Extensive experience in infrastructure auditing (preferably in the banking/financial services sector).
• In-depth knowledge and experience in auditing server operating systems, server virtualization systems, database management platforms, middleware technologies, storage infrastructure, network infrastructure, firewalls, VPN, and other types of security appliances, data backup solutions, email management systems, mainframe systems and related security products, file transmissions and job scheduling systems.
• Working knowledge of cloud computing risks and related controls frameworks.
• Working knowledge of modern delivery practices and supporting tech (agile, DevOps tools, etc.).
• Working knowledge of API Management and associated security risks.
• In-depth knowledge of ITIL Standards and core IT services such as change, problem, incident, and asset management.
• Strong understanding of regulatory requirements as they relate to technology in the financial services industry.

Responsibilities

• Successful Audit Plan Completion
• Stay abreast of best practices, industry developments, and changing or emerging risks and consult with the audit teams to ensure their coverage as appropriate in assigned audits.
• Participate in the execution of audit procedures, particularly those which are highly visible and complex in nature, in a risk-focused manner while maintaining independence and adhering to department and professional industry standards.
• Analyze audit findings, particularly those that require complex judgment or sophisticated analytical thought, and propose creative and pragmatic solutions to the audit team for consideration in the final audit report.
• Drive audit teams in the planning and execution of validation procedures for Internal Audit and Regulatory issues that require subject matter expertise.
• Organize and complete work within established budgets and time frames with minimal direction from audit management.
• Incorporate the use of data analytics throughout all phases of the audit process.
• Inform and clearly demonstrate support for the department’s strategic objectives.
• Possess strong management and interpersonal skills, make sound decisions independently, exhibiting initiative and intuitive thinking.
• Proactively communicate with senior management members of the audit team and line of business senior and executive regarding the status of audits and potential issues identified.
• Build strong partnerships with business stakeholders and audit team members.
• Demonstrates strong judgment, political astuteness, and sensitivity to cultural commitment.
• Coach, mentor, and oversee the work of junior audit team members, tailoring the approach based upon their skills and experience.
• Actively participate in overall staff development for assigned audit portfolio / team.
• Adhere to applicable compliance/operational risk controls in accordance with Company or regulatory standards and policies.
• Promote an environment that supports belonging and reflects the M&T Bank brand.
• Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators, as applicable.
• Complete other related duties as assigned.

Benefits

• Competitive benefits ranging from medical and retirement to forty hours of paid volunteer time each year.