IT Audit Manager

About Citco:

Citco is a global leader in fund services, corporate governance and related asset services with staff across 80 offices worldwide. With more than $1.8 trillion in assets under administration (AuA), we deliver end-to-end solutions and exceptional service to meet our clients’ needs.

About the Team & Business Line:

We’re a family-owned business, not a faceless corporation. This personal approach informs every aspect of our customer service, where we develop long-lasting relationships with our clients. But we don’t stop there: we also build these same bonds among our own teams, too. Here, we’ve created a community where colleagues support one another and different departments help others succeed. And here, we’ve cultivated a culture where employees care about our company values and live them in their work. At Citco, this people-centric philosophy is the core of who we are—and it shines through in everything we do, every day.

As Technology Audit Manager, you will assist in managing the risk-based audit plan so that (1) audit work fulfills its purposes, (2) resources are efficiently and effectively employed and (3) audit work conforms to internal standards and the Standards for the Professional Practice of Internal Auditing. On top of that, you will work with IT and business management to further improve the control environment and to engage with the management team in a collaborative manner. You will develop, manage and direct the GIA staff members of your team to achieve the tasks and objectives set out as part of the audit plan, and work with Managers, Senior Managers, Business Partners within GIA to cover the Citco Group audit universe in an effective and efficient manner.

• Report directly to the GIA Business Partner (BP), keeping them up-to-date with emerging issues, audit progress and resourcing information
• Foster risk and control awareness across the organization by working with management and second line of defense functions
• Drive a risk-focused approach to the audit process and related reporting
• Coordinate communication of risk themes through the quarterly reporting process and management meetings
• Makes sure local audit plans adhere to regulatory requirements/expectations
• Primarily be responsible for execution of the annual risk-based audit plan including ongoing evaluation of plan based on emerging risks
• Responsible for dynamic assessment of risks for business/function and proposing updates to the plan
• Set involvement and responsibilities of auditors within the team and take ownership of the reporting process
• Work with clients and second line of defense functions to identify, risk assess and formulate plans of action driven by changes in business, risk profile and regulatory environments; escalate relevant information within GIA and with divisional/functional/local stakeholders
• Manage audits including responsibility for workpaper review, identification of risks/audit issues, report preparation and escalation of relevant matters identified in the audit process to management and GIA management
• Responsible for escalation of high-risk issues and Level 3 reports to BPs and the Head of GIA
• Act as a GIA relationship manager and point of contact for senior business/functional management; results of relationship management meetings, committee meetings, management information to be shared promptly with relevant BPs
• Maintain expertise and pursue training to keep abreast of new and proposed developments in the Auditing field and consider the impact on the company through various industry organizations including the IIA
• Provide direction, guidance and motivation to staff including goal setting and appraisals

About You:

• You are degree qualified and have relevant audit and/or security technical qualification (e.g. CIA, CISA, CISM, CISSP).
• 5 to 10 years of relevant Audit experience in a similar internal audit position, preferably in a financial institution/Big 4
• Some work experience/knowledge of hedge fund administration desirable
• Experience with auditing general IT controls and familiarity with IT control frameworks such as COBIT and/or ITIL.
• Familiarity with cloud control frameworks and best practices
• Knowledge of software development lifecycle and project management methodologies and audits thereof;
• Experience in executing cyber-themed audits in a multinational, diverse organisation.
• Knowledge and awareness of current and upcoming regulations, particularly related to Cyber, Operational Resilience and AI
• Interest or experience in assessing frameworks and implementation language learning models (LLMs)
• Proven track record in managing and being part of a team in a global setting
• Demonstrated knowledge of modern internal audit best practice and methods, and are capable of understanding the applications of a range of audit techniques
• You pride yourself in being a ‘team player’ who can work well within the GIA function and also collaborate successfully with other GIA managers and risk/control support functions to deliver a quality service.
• Proactive person with good project management and organizational skills
• Excellent communicator with strong interpersonal skills
• Must be legally eligible to work in Canada on a permanent basis
• Reliable and prepared to undertake limited international travel

Our Benefits

Your well being is of paramount importance to us, and central to our success. We provide a range of benefits, training and education support, and flexible working arrangements to help you achieve success in your career while balancing personal needs. Ask us about specific benefits in your location.

We embrace diversity, prioritizing the hiring of people from diverse backgrounds. Our inclusive culture is a source of pride and strength, fostering innovation and mutual respect.

Citco welcomes and encourages applications from people with disabilities. Accommodations are available upon request for candidates taking part in all aspects of the selection.