AVP - IT Audit

Headquartered in Tokyo, Sumitomo Mitsui Banking Corporation (SMBC) is a leading global financial institution and a core member of Sumitomo Mitsui Financial Group (SMBC Group). Built upon our rich Japanese heritage since 1876, we put our customers first and provide seamless access to, from and within the Asia Pacific region.   SMBC is one of the largest Japanese banks by assets and maintain strong credit ratings across our global integrated network.  We work closely as one SMBC Group to offer personal, corporate and investment banking services to meet the needs of our customers.

With sustainability embedded within our strategy and operations, we are committed to creating a society in which today’s generation can enjoy economic prosperity and well-being, and pass it on to future generations.

As the IT auditor based in SMBC India, you will be primarily involved in IT audits of SMBC India Division to add value and improve the India offices IT and Information Security (IS) activities by bringing an efficient and disciplined approach to the effectiveness of governance, risk management and control processes. You will have the opportunity to work with the India stakeholders to evaluate internal controls and providing recommendations to strengthen these processes. As a specialised IT auditor, you will play a critical role in promoting a strong risk management culture and improving the technology and security control environment across SMBC India Division. On rare occasions, you may be called upon to help support regional IT audits in other locations within Asia Pacific region.

Key Responsibilities

• Lead and/or execute audits independently and efficiently, which includes audit planning, fieldwork, reporting and, issue follow-up and closure.
• Conduct the audit activites in accordance with the Bank's internal audit methodology.
• Assess the SMBC India Division IT and IS internal control environment with view to provide value-adding recommendations to Management to address emerging issues or remediate identified weaknesses.
• Apply data analytics to assess SMBC India Division internal control environment.
• Establish and develop good working relationships with SMBC India Division Management of IT and IS departments, for which the candidate has been assigned risk assessment responsibilities.
• Contribute to the annual risk assessment exercise by developing a good understanding of the business strategy, plans, products, processes, performance, risks, and issues of SMBC India Division IT and IS departments.
• Perform continuous monitoring on IT and IS activities in SMBC India Division, to keep abreast on evolving markets, regulatory, business and operational changes to drive appropriate ongoing audit coverage.
• Participate in the team’s strategic initiatives and projects as opportunities arise.

Requirements

• Minimum of 6 years of experience in IT/IS audits, preferably in the banking environment.
• Familiar with execution of risk-based audits.
• Familiar with technology risk management.
• Certified Information Systems Auditor, Certified Information Systems Security Professional or equivalent preferred.
• Familiar with the RBI regulatory requirements specific to technology risk management and cyber security
• Proficient in both spoken and written English.
• Good interpersonal and stakeholder management skills.
• Good team player as well as able to work independently.
• Meticulous, disciplined and self-motivated individual with the passion to pursue excellence.