Senior IT Audit Manager

In compliance with applicable laws, HSBC is committed to employing only those who are authorized to work in the US. Applicants must be legally authorized to work in the U.S. as HSBC will not engage in immigration sponsorship for this position.

Our purpose – Opening up a world of opportunity – explains why we exist. Here at HSBC we use our unique expertise, capabilities, breadth and perspectives to open up new kinds of opportunity for our more than 40 million customers. We’re bringing together the people, ideas and capital that nurture progress and growth, helping to create a better world – for our customers, our people, our investors, our communities and the planet we all share.

The Information Technology (IT) Infrastructure, Cyber Security and Cloud - Senior IT Audit Manager role is based within HSBC Group Internal Audit. This role is to support the Group Head of Technology Audit with initiating and leading the delivery of audits, some major and/or highly complex, based on the critical assessment of the Technology control environment.

As our Senior IT Audit Manager, you will:

• Provide leadership and execution of audits related to Infrastructure, Cybersecurity and Cloud, ensuring that key risks are addressed in line with the audit scope and documented according to Global Internal Audit prevailing procedures
• Consistently deliver high quality audit work across the IT Infrastructure, Cybersecurity and Cloud portfolios. This work is typically conducted globally
• Engage with and provide strategic advice to internal stakeholders by leveraging knowledge of IT risks, IT governance, internal risk frameworks and external regulatory frameworks
• Understand and keep abreast of key changes in the regulatory environment, as well as emerging technology risks, to set priorities for Global Internal Audit and determinate if changes are needed to the annual audit plan
• Play an integral role in delivering the annual audit plan

You´ll likely have the following qualifications to succeed in this role:

• Experience leading Global Technology or Cybersecurity audits across multiple business functions and regions
• Relevant product knowledge including IT systems development, operations and administration and Cloud Computing
• Experience auditing cloud technologies is desirable, including IaaS and SaaS across mainstream offerings from Microsoft, Amazon and Google along with a working knowledge of data transfer controls
• Experience creating data analytics to support audit testing, including the use of Qlik Sense, SQL, Alteryx and Python
• Excellent spoken and written communication skills with experience adapting style and approach to different audiences and messages
• A proven track record of seeking ways to improve processes, with a strong understanding of the mechanism required to successfully implement change
• Experience working in an Audit or Risk based role (e.g., Internal / External Auditor, Risk Steward, Control Officer) and regulatory liaison such as presenting audit testing outcomes and the monitoring / validation of regulatory findings
• Role-related qualifications, e.g., Certified Information Systems Auditor or a relevant Degree in Information Systems (or equivalent)

As an HSBC employee, you will have access to tailored professional development opportunities to ensure you have the right skills for today and tomorrow. We offer a competitive pay and benefits package including a robust Wellness Hub, all in a welcoming and inclusive work environment. You will be empowered to drive HSBC’s engagement with the communities we serve through an industry-leading volunteerism policy, a generous matching gift program, and a comprehensive program of immersive Sustainability and Climate Change Initiatives. You’ll want to join our Employee Resource Groups as they play a central part in life at HSBC, including the development of our employees and networking inside and outside of HSBC. We value difference. We succeed together. We take responsibility. We get it done. And we want you to help us build the bank of the future!

The final fixed pay offer will depend on the candidate and a number of variables, including but not limited to, role responsibilities, skill set, depth of experience and education, licensing/certification requirements, internal relativity, and specific work location.

All qualified applicants will receive consideration for employment without regard to age, ancestry, color, race, national origin, ethnicity, disability or medical condition, genetic information, military or veteran service, religion, creed, sex, gender, pregnancy, childbirth, caregiver status, marital status, citizenship or immigration status, sexual orientation, gender identity or expression or any other trait protected by applicable law.