Help strengthen the technology controls that support products used by millions of customers. You’ll lead high-impact audits, partner with senior technology stakeholders, and provide independent challenge that drives meaningful change. Join a global team that values collaboration, curiosity, and continuous improvement. This role offers broad exposure across consumer banking products and the opportunity to shape a proactive risk culture.
Job summary
As a Technology Audit Director within the Consumer and Community Banking Technology Audit team, you will lead technology audit coverage for the line of business and oversee delivery from planning through reporting. You’ll evaluate the adequacy of the control environment across a range of consumer and community banking related products, and you’ll help stakeholders strengthen risk management practices. You’ll coordinate across audit and business partners to validate issue remediation and support continuous monitoring. You’ll also engage in governance forums to provide independent challenge on control matters.
Job responsibilities
- Lead large, complex technology audits from planning through final reporting, delivering high-quality work aligned to professional standards.
- Oversee audit activities including risk assessment, scoping, testing, control evaluation, report drafting, and follow-up validation.
- Review audit workpapers and evidence to ensure accuracy, completeness, and timely execution.
- Assess control design and operating effectiveness, and form an overall opinion on the control environment.
- Communicate audit results clearly, including sensitive topics, and influence action with senior stakeholders.
- Build strong relationships with senior technology leaders, promoting constructive engagement and value-add outcomes.
- Participate in governance forums to provide independent challenge on technology risk and controls.
- Monitor stakeholder priorities and provide feedback on control enhancements and implementation progress.
- Manage issue validation and verification of closure, applying sound judgment on remediation sufficiency.
- Develop team capability through coaching, timely review, and actionable feedback, supporting performance and growth.
- Coordinate with audit colleagues across business and technology to ensure key risks are identified and covered.
Required qualifications, capabilities and skills
- Technology audit experience in internal audit, external audit, or risk/control roles within regulated environments.
- Bachelor’s degree or equivalent relevant financial services experience.
- Knowledge of technology risk and internal controls, including the ability to evaluate controls in an integrated business-and-technology context.
- Understanding of one or more of the following: automation, coding, data analytics, artificial intelligence, and distributed technologies.
- Strong analytical skills to assess the likelihood and impact of control weaknesses and to prioritize risk.
- Excellent communication skills (written and verbal) with the ability to explain complex issues to senior management.
- Stakeholder management skills with demonstrated ability to build trusted partnerships.
- Leadership capability to guide teams, review work effectively, and drive high standards in deliverables.
- Ability to work globally and collaboratively across teams, sharing knowledge and supporting collective outcomes.
- Professional certification such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified Internal Auditor (CIA).
- Regulatory coordination experience supporting examinations and related activities for technology areas
Preferred qualifications, capabilities and skills
- Degree or background in technology (e.g., computer science, engineering, information systems).
- Experience in financial services technology audit or technology risk management.
- Experience in a large public accounting firm and/or an in-house audit function within financial services.
- Exposure to auditing modern engineering environments (cloud, DevOps, data platforms) and associated control patterns.