Director, Audit (Digital Banking)
- Recruiter
- Scotiabank
- Location
- Toronto, Ontario, Canada
- Salary
- Competitive salary
- Posted
- 01 Mar 2021
- Closes
- 02 Mar 2021
- Ref
- 544850417
- Job role
- Audit, Finance director
- Sector
- Digital
- Experience level
- Director
Requisition ID: 96382
Join the Global Community of Scotiabankers to help customers become better off.
Job Purpose
The Director, Digital Banking, Emerging Risk & Cyber Security Audit Group oversees the Audit's strategy over Digital Banking initiatives, supporting the Vice-President, IT Audit in developing, executing and reporting on the Digital Banking audit plan. While the Director has accountability for the Digital Banking audit plan in Canada, the incumbent works collaboratively with other Audit teams to develop and maintain an effective global audit strategy for Digital Banking initiatives.
Accountabilities
1. Leads and drives a customer focused culture throughout their team to deepen client relationships and leverage broader Bank relationships, systems and knowledge.
2. Assists the Vice-President, IT Audit in the development of the annual Digital Banking audit plan and the continuous evaluation of the plan to ensure that all high-risk areas and processes are covered. Develops risk assessments and an audit coverage plan for Digital Banking. Demonstrate flexibility and urgency, navigating a team of auditors in completing the audit plan.
3. Identifies systemic/thematic issues and/or strategic changes planned/undertaken by Management that will impact the audit plan including review of business/strategic plans, review and update of the Audit Risk Assessment Database for entities assigned, attends periodic meetings with key Management officers to understand changes and new business initiatives and review key performance indicators. The Director is responsible for implementing continuous monitoring and reporting to Senior and Execute Management.
4. Ensures when acting as Audit Principal or as Officer in Charge (OIC) that the engagement plan addresses all risk areas, audit programs are appropriately designed, and general adherence to the Audit Department's methodology. Also, assists in ensuring that the engagement is appropriately staffed, including secondment of staff from other audit groups to assist in the audit project.
5. Ensures the audit team executes the audit plan to meet the audit objectives within the budgeted time. Also, completes review of work paper files to meet Internal and Audit Quality control standards. Works with VPs to ensure appropriate audit coverage and minimizes duplicate audit efforts between internal and external auditors. Manages and/or supervises assigned activities independently in accordance with Department standards, ensuring the nature and extent of testing is appropriate to support the audit findings and conclusions. As OIC of assignments, this includes ensuring appropriate completion and review of documentation prepared by audit team members.
6. Reviews audit findings with team members to validate the accuracy of the finding and clearly highlight the risks for presentation to Management. Follows up with staff responsible for timely resolution of the findings in the Issue Tracking Database. Ensures internal control weaknesses have been identified, errors have been quantified as appropriate, problems and associated impact are properly defined, documented and reported; and identified issues are clearly understood so that line management/product owner will take corrective action. Reviews the quarterly status of outstanding issues as assigned for inclusion in reports to Management and the Audit Committee.
7. Drafts/reviews reports produced by the audit team to ensure that writing is clear and concise prior to submission to Vice-President. Assists in ensuring that reports are issued in a timely manner to Senior Management. Ensures that TeamMate is updated on completion of the audit, all sections are reviewed, and findings have been uploaded to Issue Tracking Database. Written reports and correspondence demonstrate a thorough understanding of issues with key risks clearly articulated and materiality clearly explained. Monitors and follow up for correction action/progress. Escalates when necessary.
8. Focuses on a high potential staff development program. Builds a high performance environment and implements a people strategy that attracts, retains, develops and motivates their team by fostering an inclusive work environment; communicating vison/values/business strategy and managing succession and development planning for the team.
9. Creates and ensure completion of appropriate individual and team development / training programs aligned to audit strategy.
10. Creates an environment in which his/her team pursues effective and efficient operations of his/her respective areas, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational risk, regulatory compliance risk, AML/ATF risk and conduct risk, including but not limited to responsibilities under the Operational Risk Management Framework, Regulatory Compliance Risk Management Framework, AML/ATF Global Handbook and the Guidelines for Business Conduct.
11. Understands how the Bank's risk appetite and risk culture should be considered in day-to-day activities and decision10. As directed by Senior Management, carry out specific projects or investigations of a complex and/or confidential nature.
Skills, Experience & Functional Competencies
1. Excellent time management, multi-tasking, and organizational skills.
2. Minimum of 5 years' experience in Digital project management and implantation with exposure to a variety of project management methodologies, e.g., Waterfall, Agile and Scrum.
3. Curious and self-motivated with strong verbal/written communication, interpersonal and problem solving skills and a strong sense of responsibility.
4. Working knowledge of IT areas such as network and web application security, penetration testing, vulnerability assessments, Data Loss Prevention, DDoS protection, malware and APT protection, security software development, database administration, encryption, and cloud-based solutions.
5. Candidates with hands-on experience in data analytics and/or visualization tools such as SAS, Tableau and Power BI would have an added advantage.
6. Minimum of 5 years' experience working in a business line with responsibility for business processes and assets. Candidates with relevant experience in risk and control functions are preferred
As the incumbent is the team's lead on Digital Banking, a key expectation is to maintain knowledge of Digital developments, initiatives, and emerging technologies (e.g., AI/ML, robotics, Block Chain) and to be proactive in ensuring that the Audit Dept. is addressing the key risks to the Bank in this area. Maintain internal competency through ongoing professional development in addition to staying abreast of industry standards, best practices and technical matters and enhancing the Audit strategy to focus on new developments through Digital-based audits and projects.
Education & Other Requirements
• Bachelor or master's degree in Computer Science, Business Analytics, Information System Business Administration or a related discipline.
• Professional certificate in Business and Data Analytics or Project Management.
Location(s): Canada : Ontario : Toronto
As Canada's International Bank, we are a diverse and global team. We speak more than 100 languages with backgrounds from more than 120 countries. Our employees are committed to a superior customer experience and use the Bank's six guiding sales practice principles to ensure they act with honesty and integrity.
At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.
Join the Global Community of Scotiabankers to help customers become better off.
Job Purpose
The Director, Digital Banking, Emerging Risk & Cyber Security Audit Group oversees the Audit's strategy over Digital Banking initiatives, supporting the Vice-President, IT Audit in developing, executing and reporting on the Digital Banking audit plan. While the Director has accountability for the Digital Banking audit plan in Canada, the incumbent works collaboratively with other Audit teams to develop and maintain an effective global audit strategy for Digital Banking initiatives.
Accountabilities
1. Leads and drives a customer focused culture throughout their team to deepen client relationships and leverage broader Bank relationships, systems and knowledge.
2. Assists the Vice-President, IT Audit in the development of the annual Digital Banking audit plan and the continuous evaluation of the plan to ensure that all high-risk areas and processes are covered. Develops risk assessments and an audit coverage plan for Digital Banking. Demonstrate flexibility and urgency, navigating a team of auditors in completing the audit plan.
3. Identifies systemic/thematic issues and/or strategic changes planned/undertaken by Management that will impact the audit plan including review of business/strategic plans, review and update of the Audit Risk Assessment Database for entities assigned, attends periodic meetings with key Management officers to understand changes and new business initiatives and review key performance indicators. The Director is responsible for implementing continuous monitoring and reporting to Senior and Execute Management.
4. Ensures when acting as Audit Principal or as Officer in Charge (OIC) that the engagement plan addresses all risk areas, audit programs are appropriately designed, and general adherence to the Audit Department's methodology. Also, assists in ensuring that the engagement is appropriately staffed, including secondment of staff from other audit groups to assist in the audit project.
5. Ensures the audit team executes the audit plan to meet the audit objectives within the budgeted time. Also, completes review of work paper files to meet Internal and Audit Quality control standards. Works with VPs to ensure appropriate audit coverage and minimizes duplicate audit efforts between internal and external auditors. Manages and/or supervises assigned activities independently in accordance with Department standards, ensuring the nature and extent of testing is appropriate to support the audit findings and conclusions. As OIC of assignments, this includes ensuring appropriate completion and review of documentation prepared by audit team members.
6. Reviews audit findings with team members to validate the accuracy of the finding and clearly highlight the risks for presentation to Management. Follows up with staff responsible for timely resolution of the findings in the Issue Tracking Database. Ensures internal control weaknesses have been identified, errors have been quantified as appropriate, problems and associated impact are properly defined, documented and reported; and identified issues are clearly understood so that line management/product owner will take corrective action. Reviews the quarterly status of outstanding issues as assigned for inclusion in reports to Management and the Audit Committee.
7. Drafts/reviews reports produced by the audit team to ensure that writing is clear and concise prior to submission to Vice-President. Assists in ensuring that reports are issued in a timely manner to Senior Management. Ensures that TeamMate is updated on completion of the audit, all sections are reviewed, and findings have been uploaded to Issue Tracking Database. Written reports and correspondence demonstrate a thorough understanding of issues with key risks clearly articulated and materiality clearly explained. Monitors and follow up for correction action/progress. Escalates when necessary.
8. Focuses on a high potential staff development program. Builds a high performance environment and implements a people strategy that attracts, retains, develops and motivates their team by fostering an inclusive work environment; communicating vison/values/business strategy and managing succession and development planning for the team.
9. Creates and ensure completion of appropriate individual and team development / training programs aligned to audit strategy.
10. Creates an environment in which his/her team pursues effective and efficient operations of his/her respective areas, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational risk, regulatory compliance risk, AML/ATF risk and conduct risk, including but not limited to responsibilities under the Operational Risk Management Framework, Regulatory Compliance Risk Management Framework, AML/ATF Global Handbook and the Guidelines for Business Conduct.
11. Understands how the Bank's risk appetite and risk culture should be considered in day-to-day activities and decision10. As directed by Senior Management, carry out specific projects or investigations of a complex and/or confidential nature.
Skills, Experience & Functional Competencies
1. Excellent time management, multi-tasking, and organizational skills.
2. Minimum of 5 years' experience in Digital project management and implantation with exposure to a variety of project management methodologies, e.g., Waterfall, Agile and Scrum.
3. Curious and self-motivated with strong verbal/written communication, interpersonal and problem solving skills and a strong sense of responsibility.
4. Working knowledge of IT areas such as network and web application security, penetration testing, vulnerability assessments, Data Loss Prevention, DDoS protection, malware and APT protection, security software development, database administration, encryption, and cloud-based solutions.
5. Candidates with hands-on experience in data analytics and/or visualization tools such as SAS, Tableau and Power BI would have an added advantage.
6. Minimum of 5 years' experience working in a business line with responsibility for business processes and assets. Candidates with relevant experience in risk and control functions are preferred
As the incumbent is the team's lead on Digital Banking, a key expectation is to maintain knowledge of Digital developments, initiatives, and emerging technologies (e.g., AI/ML, robotics, Block Chain) and to be proactive in ensuring that the Audit Dept. is addressing the key risks to the Bank in this area. Maintain internal competency through ongoing professional development in addition to staying abreast of industry standards, best practices and technical matters and enhancing the Audit strategy to focus on new developments through Digital-based audits and projects.
Education & Other Requirements
• Bachelor or master's degree in Computer Science, Business Analytics, Information System Business Administration or a related discipline.
• Professional certificate in Business and Data Analytics or Project Management.
Location(s): Canada : Ontario : Toronto
As Canada's International Bank, we are a diverse and global team. We speak more than 100 languages with backgrounds from more than 120 countries. Our employees are committed to a superior customer experience and use the Bank's six guiding sales practice principles to ensure they act with honesty and integrity.
At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.