Senior Audit Manager, Tech & Cyber

“At CommBank we are proud to support flexibility, let’s discuss what this means for you”

Group Audit & Assurance (GA&A) provide independent, objective and commercial risk focused assurance to the Board Audit Committee to assist the Group in securing and enhancing the financial wellbeing of its stakeholders. GA&A are recognised by Ernst & Young and PwC as the leading internal audit function among Australian peers in the financial services industry.

See yourself in our team

The Technology audit team within the GA&A department provides coverage over the technology portfolio as well as cybersecurity, critical projects and technology suppliers across the Bank. The team is structured as a shared service model to provide a centre of excellence for IT audit assurance to the business audit teams.

In this role, you will also be the lead-person responsible for technology assurance activities impacting Bankwest which will include regularly evaluating the assurance approach for Bankwest technology, participation in senior risk management forums, strategic project governance forums and building key relationships with senior Bankwest technology stakeholders.

Do work that matters

• In line with CBA Internal Audit Methodology, oversee effective and efficient planning and delivery of audits and assist your Executive Manager in building a dynamic, risk-based Audit Plan to appropriately capture key and emerging risks
• Lead and deliver audits across the Bankwest Technology team, and understand the impact to Bankwest of any group-wide reviews
• Interview customers and conduct process walkthroughs to understand the risk and control environment
• Test key controls by gathering relevant audit evidence and interpreting data and document test plans, results and conclusions clearly and concisely
• Demonstrate a general understanding of diverse IT systems and technology concepts
• Effectively manage stakeholders, timelines and communication and integrate knowledge and assurance provided by other Line 1-2 risk functions and the External Auditors when undertaking audit fieldwork

We’re interested in hearing from people who possess

• Extensive understanding and experience in risk or internal or external audit covering key technology and cyber processes/controls
• Strong knowledge of areas such as Application controls, IT security including Identity and access management, Systems development, Change & release management, Incident & problem management, Systems resilience and recovery
• Experience in auditing cloud-based environments or API technologies is highly desirable
• Excellent leadership and interpersonal skills, with the ability collaborate and influence

Is this your next challenge? Apply now