web analytics

Head IT Internal Controls & Audit Management

    HBL

    JOB PURPOSE

    The job position is responsible and held accountable towards demonstrating passion for enterprise Information Technology within a high-volume dynamic environment.

    The position primarily focuses on the applicability of IT’s Enterprise Knowledge, Internal Controls, Risk Management, Audit Management along-with oversee of the development and implementation of enterprise IT Internal Controls with a desire to relentlessly champion regulatory guidelines, adaptability of industry good practices and complying relevant international standards.

    The position depicts the centralized IT point of contact for all IT governance, internal controls, risk and audit functions at HBL.

    Description

    IT Internal Controls

    • Develop and establish policy, procedure, policy wise control self-assessment (hereinafter referred to as “CSA”) questionnaire, enterprise control chart, control monitoring trackers (where applicable) and relevant templates.
    • Oversee, guide and support the building/amending of all amendment in the above defined documents.
    • Oversee, guide and support the building/automation of IT processes towards operational efficiency and reduction of TAT.
    • Oversee, guide and support the definition and amendment of policy wise internal controls against IT policy for refinement and removal of gaps.
    • Oversee, guide and support end-to-end conduction of annual IT internal controls self-assessment (hereinafter referred to as “ITICSA”) for monitoring operating effectiveness of established controls and;
    • Oversee, guide and support the collation, validation and issuance of consolidated report detailing policy gaps, resolutions and recommendations for improvisation and;
    • Oversee, guide and support the discussion and articulation of solution and action plan against identified policy gaps.
    • Oversee, guide and support the provision of adequate awareness to ensure first two reporting levels of policy owner ensuring better understanding of objectives and execution scope of ITICSA and;
    • Oversee, guide and support the coordination with organizational operational risk management, information security, internal controls and compliance functions to oversee and support the completion of processes e.g. Internal Controls for Regulatory (ICFR) etc. and;
    • Oversee, guide and support the assessment of all the ‘High’ rating risks, audit observations, threats and vulnerabilities after every occurrence and mapping of established internal controls against them for swift mitigation and resolution.

    IT Audit Management

    • Oversee, guide and support IT audit and compliance programs and appraises the activities of all workstreams’ personnel serving as liaison for all internal, external and regulatory audit agencies.
    • Oversee, guide and support end-to-end audit streams i.e. Group, International (Internal, External, Regulatory), Domestic (Internal, External, Regulatory), Regulatory Programs, 3rd party Entity ensuring completeness of steps from pre-audit information collection to the issuance of final audit report.
    • Oversee, guide and support on the responses to be timely forwarded to audit parties and other relevant entities for necessary compliance.
    • Oversee, guide and support the performance of due diligence for assurance that appropriateness of responses in line with audit observation risk, rating and recommendation.
    • Oversee, guide and support the coordination with the internal IT stakeholders for follow-ups and provisioning of the required management response in line with audit risk, rating and recommendation in-alignment of the previous management responses furnished with evidences towards closure of observations.
    • Oversee, guide and support the discussion on the findings of audit reviews with IT management on a constructive basis to develop the most appropriate and proportionate solutions towards resolution and closure.
    • Oversee, guide and support the enterprise IT audit observations repository (with response trail and all relevant evidences against each) for continuous tracking, monitoring and reporting of open observations to the management.
    • Oversee, guide and support on working closely with auditors to develop continuous monitoring and technology-enabled audit techniques.

    Regulatory Accountabilities

    • Depicts the centralized IT point of contact for regulator bridging the facilitation on following activities:
    • Development, implementation and compliance of any guidelines in lieu of issued circulars.
    • Notifications with respect to planned / scheduled downtimes.
    • Any inquiry arose directly to IT or enablement via IT.

    IT Risk Management

    • Oversee and support the coordination with operational risk management and compliance functions to oversee and support the completion of processes e.g. Risk Control Design Assessment (RCDA), Institutional Risk Assessment Framework (IRAF) etc.

    Team Management

    • Oversee and support the establishment of unit’s/resources’ structure, job descriptions, goals, performance and its measurement on annual frequency.
    • Manage team effectively to ensure they are motivated and deliver annually defined goals on time and in a seamless manner.
    • Guide, coach and mentor the team to ensure effective solutions and services are provisioned to all stakeholders within the controlled environment.
    • Coordinate and delegate responsibilities within the team members.
    • Escalate organizational information within the team members.

    Miscellaneous

    • Drive, execute and coordinate any assignment dispensed by IT Management towards fulfilment of the needs of regulators or external entities for mitigation of Bank’s risk or to beef-up controls.

    Qualifications

    Minimum Qualifications:

    • Bachelors / Post-Graduate in Computer Science.
    • Trained COBIT5, CISA

    Minimum Experience:

    • 15+ years extensive all-round IT Banking experience within domestic and International environments.

    Expected salary:

    Job date: Sat, 17 Sep 2022 00:49:38 GMT

    Head IT Internal Controls & Audit Management

    To apply for the job click here

    Head IT Internal Controls & Audit Management

    To apply for the job click here

    Contact us

    HBL

    Related Jobs