Job Overview
State Street Bank International GmbH is looking for an IT Audit Manager, Assistant Vice President, responsible for managing and performing audits covering IT governance, systems infrastructure, information security, application controls, operational activities, and ensuring compliance with the division’s risk‑based audit methodology. The role focuses on global IT audit engagements while respecting local regulatory requirements.
The position can be based in Krakow (Poland), Frankfurt/Munich (Germany), Milan (Italy), or Luxembourg, and offers a hybrid model with an expectation of about 3 days on site and 2 days remotely.
Responsibilities
* Work as part of an international team with global stakeholders in new and changing situations where there may not always be a readily apparent solution.
* Manage the planning, assessment, testing and reporting phases of audits covering IT governance, systems infrastructure, information security, application controls, and operational activities.
* Perform independent and objective assessments of risks and controls to improve risk management practices.
* Assess systems and supporting controls for compliance with laws, regulations, company policies and meet business needs.
* Recommend control improvements to mitigate key risks.
* Maintain a thorough knowledge of ECB and BaFin regulatory requirements (for example DORA, EBA Guidelines on Outsourcing).
* Influence change and provide insights on business initiatives, including system implementations.
* Prepare or review audit workpapers to ensure compliance with the division’s risk‑based audit methodology.
* Supervise, coach and develop staff, helping to build technology audit skills across the Corporate Audit division.
* Use excellent writing skills to succinctly communicate complicated technical issues in business terms.
* Prepare audit reports and present key findings to senior level management.
Qualifications
* Experience leading and supervising project teams, preferably in an audit or assurance capacity within the financial services industry.
* Proficiency or knowledge in evaluating and testing internal controls and in applying a risk‑based audit approach.
* Ability to effectively prioritize multiple tasks and work independently in an international team across multiple locations with global stakeholders in a fast‑paced environment and manage complex non‑routine situations while multi‑tasking.
* Professional curiosity and willingness to learn new technologies and processes.
* Strong analytical, interpersonal, organizational, research and communication (verbal and written) skills.
* Good understanding of the role of first, second and third line of defense.
* Fluency in English (written and spoken).
* University degree in Information Systems, Computer Science, Accounting or related field; advanced degree in Information Technology, Cyber Security or Systems Engineering preferred.
* Currently hold one or more industry‑recognized certifications such as CISA, CRISC, CISM, CISSP, Cloud+ etc., and a willingness to continue to learn and grow.
* 5+ years of auditing technology‑related areas such as IT resilience, data replication, disaster recovery, identity and access management, privileged access management, adaptive authentication solutions, IT change management, IT incident and problem management, SIEM technologies, cyber incident and response, enterprise security controls frameworks, cloud security, financial services operational processes and technology, and automated business process controls.
Additional Requirements
* Willingness to travel up to 20% annually.
* Knowledge of German or Italian language will be considered a plus.
Seniority Level
* Mid‑Senior level
Employment Type
* Full‑time
Job Function
* Information Technology
#J-18808-Ljbffr