Job Description

Job : Audit
Primary Location : Asia-Singapore-Singapore
Schedule : Full-time
Employee Status : Permanent
Posting Date : 04/Apr/2023, 6:39:57 AM
Unposting Date : 18/Apr/2023, 5:59:00 PM


Responsibilities GIA represents the third line of defence and provides independent assurance of the effectiveness of management\xe2\x80\x99s control of business activities (the first line) and of the control processes maintained by the Risk Framework Owners and Policy Owners (the second line). GIA works with the Group\'s other control functions, such as Finance, Risk and Compliance, but does not place unqualified reliance on their work. GIA is an independent function whose primary role is to help the Board and Executive Management to protect the assets, reputation, and sustainability of the Group. As defined in the Audit Charter, all staff in GIA must exhibit the highest level of professional objectivity in gathering, evaluating, and communicating information about the activity or process being examined. They must make a balanced assessment of all the relevant circumstances and not be unduly influenced by their own interests or by others in forming judgments. GIA will adhere to the Definition of Internal Auditing, the Core Principles for the Professional Practice of Internal Auditing, Code of Ethics, and the Standards for the Professional Practice of Internal Auditing that are published by the IIA. It is expected that all members of GIA strive to operate as role models for the Group\xe2\x80\x99s valued behaviours. GIA methodology has defined \xe2\x80\x9cHabits of a Human Auditor\xe2\x80\x9d which are aligned to the Group\xe2\x80\x99s valued behaviours and communicated across the function. In addition to the responsibilities defined in the Audit Charter to protect the assets, reputation, and sustainability of the group. The HOA will lead on the delivery of the GIA Strategy for their relevant portfolio \xe2\x80\x93 focusing on:

• Customer experience

• Effective Group change

• Identifying Group efficiencies and avoiding disruption from audit

• To act as Team Manager, as necessary, and take responsibility for overseeing the delivery of high-quality audits, the performance of which cause minimal disruption to the business. Responsible, where serving as Team Manager, for the finalisation of audit issues and the audit report.
• To role model the valued behaviours and develop an environment in which positive behaviours are celebrated and poor culture is challenged.
• Assigned audit work, as well as the work carried out by the team, should be executed in an efficient and effective manner, within the given budget and timelines, and in line with GIA methodology standards.
• To clearly identify the risks and impact of issues during issue writing, agreeing these issues with management and obtaining quality management action plans to mitigate the risks raised.
• To lead continuous monitoring of assigned countries / portfolio areas, and to build and maintain engagement with stakeholders.
• To take responsibility for the implementation and support of department-wide exercises such as annual planning, risk assessment and training.
• To support GIA audit teams by providing product/country knowledge and expertise for their audits relating to the individual\xe2\x80\x99s area of responsibility.
• To attend and represent GIA at formal committees and Group meetings, providing meaningful challenge and data-driven insights, as required, e.g., Governance Committees and Country Non-Financial Risk Committees; and
• Serve as the GIA portfolio/country subject matter expert \xe2\x80\x93 proactively engage with peers and stakeholders to maintain, build, and share knowledge.
• Issue validation: All audit issue action plans agreed during audit fieldwork should be tracked through to completion in accordance with methodology requirements

Strategy

• Contribute to the GIA risk assessment and design the subsequent risk-based audit plan for the assigned portfolio.
• Audits assigned to the individual in the GIA audit plan should address the key risks identified in the detailed risk assessment and in the audit planning process and meet relevant regulatory requirements and expectations that are required to be covered by GIA.
• Consider whether the assigned audit plan remains relevant throughout the year as the risk profile of the business changes. Propose changes as appropriate; and
• Ensure that audit team operates in line with the Audit Charter during engagements, remains independent from management and free from interference.

Business (Budget)

• Effectively manage the cost of assigned audits within the allocated budget for audit engagements; and
• Identify and implement opportunities for cost savings and optimal productivity of assigned audit engagements.

Audit Delivery

• To act as Team Manager on assigned audit work involving Information & Cyber Security risk across the Group. This will entail managing the Team Leader and junior colleagues working on the audit to deliver the Audit Planning Memo, Process Risks Controls Matrix, agree issues and action plans with management and submission of draft report to the Team Manager for review.
• Provide clear guidance, detailed review, and supervision of the audit team\xe2\x80\x99s work so that audit deliverables meet quality standards and timelines in line with the GIA methodology.
• Provide guidance on business/audit technical knowledge and management skills to team leaders and team members to enable them to effectively deliver their assigned contributions for an audit.
• Provide technical input and challenge on audit work being undertaken within the scope of assigned product / country area of responsibility. This will include working with the audit team to produce outputs of high quality which address the areas of greatest risk.
• Support adherence to the GIA methodology in all areas of the audit engagement, as well as raising awareness and understanding of the methodology.
• Demonstrate sound knowledge of both business/technical areas and expert knowledge in the audit process, including the GIA system, so that audit work is carried out to a high standard that meets all methodology and GIA system requirements.
• Take the lead in presenting the draft report in the GIA report review process (to the tollgate or report approver); and
• Monitor the implementation/delivery of the agreed issues/audit plans for the audits assigned, understanding the key risks arising, provide advice on resolution of issues to auditees/action plan owners and escalate audit findings that remain unresolved.

Risk Assessment

• Update the assigned Continuous Risk Assessment on a regular basis to identify changes in risk profiles and document these in a timely manner, proposing changes to the assigned audit plan, as appropriate.
• Promote early identification and escalation of risks, issues, trends, and developments to relevant stakeholders. Be prepared to raise issues/concerns outside the normal audit process.
• Attend relevant meetings relevant to assigned country / product area (e.g., Management Groups and Committees) provide insights and meaningful challenge, ensuring risks are appropriately identified, discussed and timely remediation plans are put in place.
• Adopt an anticipatory approach to risk assessment through stakeholder engagement and monitoring of the external environment to improve audit planning; and
• Review MI and reports regularly to keep up to date with key trends within the business and audit deliverables.

Stakeholder Management

• Establish and maintain effective working relationships with the management of business units which fall under portfolio responsibility.
• Successfully manage external stakeholders such as regulators and reviewers.

People and Talent

• Demonstrate strong leadership and ability to motivate and guide audit Team Leaders and members.
• Share knowledge to increase specialism within the function.
• Influence change within the department by highlighting potential enhancements.
• Identify growth areas on an ongoing basis and identify how best to develop them.
• Provide performance feedback, as appropriate, to Team Leaders at the end of an audit. Review and agree the feedback provided for team members with the Team Leader.
• Identify and successfully complete key internal training for self-development; proactively seek an external lens to support delivery of meaningful audit work.
• Facilitate the development of audit team members by providing on the job training and recommending formal training to support GIA activities; and
• Proactively spot talent for GIA.

Governance:

• Manage the relevant Product/Country clients and establish good working relationships to help the businesses improve the control environment and keep updated with changes in the business impacting their risk profile.
• Propose changes to audit plans, so the audit plan remains relevant.
• Lead by example on how to communicate audit-related matters and resolve any conflict between auditors and auditees during an audit. Use networks and relationships to build engagement and achieve results.
• Escalate delays in the execution of audit work, both to auditee management and GIA management, role model this behaviour to Team Leaders.
• Be able to clearly explain issues identified along with the risks and root causes to GIA and business management, using language designed to be understood by non-experts; and
• Manage the relevant Product/Country stakeholders, as appropriate, and establish good working relationships to help the businesses improve the control environment and keep updated with changes in the business impacting their risk profile.

Regulatory & Business Conduct

• Display exemplary conduct and live by the Group\xe2\x80\x99s Values and Code of Conduct.
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
• Support GIA to achieve the outcomes set out in the Bank\xe2\x80\x99s Conduct Principles.
• Effectively and collaboratively identify, escalate, mitigate, and resolve risk, conduct and compliance matters.

Key Stakeholders

• Designated business stakeholders, typically related to assigned portfolio; and
• GIA stakeholders \xe2\x80\x93 team leaders, team members, team managers, Product, Functional, Country and Regional Heads of Audit.

Other Responsibilities

• Embed Here for good and Group\xe2\x80\x99s brand and values in GIA; and
• Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures.

Role Specific Technical Competencies

• In-depth understanding of Technology Infrastructure risk management and associated control requirements.
• Strong communicator, both written and verbal, with ability to clearly explain controls to be tested and risks identified to audit and business management.
• Confident and courageous to raise and escalate ideas or concerns in a professional and timely manner.
• Proactive, self-directed, and able to work with minimum supervision.
• Ability to work within a global team.

Qualification

• 15+ years of experience in technology audit/risk
• Strong background in audit with technology infrastructure domain experience (e.g., cloud, networks, server, data centres) preferably in the financial services industry.
• Strong interpersonal skills for building and maintaining credibility and effective working relationships with counterparts in Group Internal Audit and business stakeholders.
• Excellent writing and business communication skills to succinctly communicate complicated technical issues in business terms.
• Experienced people manager preferably with experience managing global teams.
• Understanding of regulations and emerging risks in banking technology.
• High degree of responsibility, self-motivated, requiring minimal supervision.
• Ability to collect and objectively analyse and apply information, \xe2\x80\x9cthinking out of the box\xe2\x80\x9d where necessary, in supporting the planning, fieldwork or reporting of results of audit engagements.
• Professional technology audit and risk domain certifications

About Standard Chartered We\'re an international bank, nimble enough to act, big enough for impact. For more than 160 years, we\'ve worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge, and enjoy finding new opportunities to grow and do better than before. If you\'re looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents. And we can\'t wait to see the talents you can bring us.
Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you\'ll see how we value difference and advocate inclusion. Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Be better together, we can be ourselves, be inclusive, see better in others, and work collectively to build for the long term

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial, and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations
• Time-off including annual, parental/maternity (20 weeks), sabbatical (12 weeks maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum
• Flexible working options based around home and office locations, with flexible working patterns
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual, and digital learning
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.

Recruitment assessments - some of our roles use assessments to help us understand how suitable you are for the role you\'ve applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process. Visit our careers website www.sc.com/careers