IT Infrastructure Audit Manager # 099809

Department Mission:

Internal Audit at Credit Suisse is a department with about 250 staff based in various locations throughout the world, with primary hubs in Zurich, London, New York, and Singapore. Internal Audit supports management with financial, operational and information-technology audits covering all business. Internal Audit plays a vital role in evaluating the effectiveness of internal controls related to all Credit Suisse Group activities. Control assessments performed are risk-based and process-oriented, generally covering front-to-back business flows with consideration of all relevant risks.

Position Description:

IT Infrastructure Audit Managers are responsible for planning, leading and reporting the results of audits and risk assessments of the Bank’s IT infrastructure environment. Audit work may also extend to additional elements including applications, and can include individual or multiple audit assignments.

Key Responsibilities:

Audit Supervision. Demonstrate an effective continuous risk monitoring approach to ensure appropriately focused audit coverage. Supervise a portfolio of audits, demonstrating an ability to effectively prioritize challenging dedications. Effectively supervise and motivate audit teams, providing necessary oversight and mentorship to ensure the audit is completed against relevant targets (e.g. budget, fieldwork timing, report clearance etc.). Identify key issues impacting businesses and IT areas under review, presenting and agreeing with management practical, commercial actions for the mitigation of associated risks. Monitor the progress and resolution of excellent audit recommendations. Demonstrate the ability to establish relationships with key IT partners. Coordinate coverage with the external auditors. Perform audit fieldwork on occasion as needed.

Technical Leadership. Develop expertise, including knowledge of IT control frameworks, key IT processes, relevant technologies, and design of IT audit control assurance tests; use this knowledge to ensure appropriate focus on the highest risks. Develop knowledge and understanding of the department's plans and related IT strategy, including the scope and progress of system-related change programmes. Maintain an awareness of key regulatory initiatives and industry standard methodologies impacting the Bank's IT environment, and ensure that these are considered in the planning of upcoming audits. Promote the development of technical subject matter expertise among others in the department.

Department Contribution. Commit at a wider department level outside of core audit responsibilities; Promote knowledge sharing and communication within the department; and Develop and maintain relationships with auditors/audit managers in other regions, for effective global collaboration.

Managerial and People Leadership. Inspire trust in our partners by demonstrating we are a high quality team of people. Coach others to develop technical and leadership skills, and provide constructive and timely feedback. Inspire others to learn and develop independently. Develop leadership skills in others - enable and support others to take on additional responsibilities and supervisory tasks where appropriate. Encourage and accept diversity within the group. Set the right "tone at the top", demonstrating a principled approach and setting the right example for junior staff.

Credit Suisse maintains a Working Flexibility Policy, subject to the terms as set forth in the Credit Suisse United States Employment Handbook.

  • You will have an undergraduate degree in Information Technology, Engineering, Business, or related discipline. A Master’s degree a plus.

  • You have 8 + years of work experience in IT risk management, auditing or consulting in a diverse, multi-platform environment.

  • You have technical knowledge of cyber security risks and controls, within network devices, operating systems, databases, storage technologies, firewalls, intrusion detection/prevention systems, messaging systems, web application technologies, mobile platforms, DLP tools, cloud computing, etc.

  • You should have familiarity with operational processes, tools and control standard methodologies in running a complex IT infrastructure platform, including systems monitoring, capacity management, resiliency, security/access controls, configuration/inventory management, backup and recovery, change management, systems development practices, etc.

  • Financial services experience preferred, but not required.

  • CISA, CISSP, CISM, or equivalent certifications a plus.

  • Strong oral and written communications skills in order to integrate with global audit teams and gain an understanding of IT Risks/controls of the process under review and articulate assessment to business auditors and Bank management.

  • You are a highly motivated, results oriented professional and an effective teammate who will establish effective links with peers and auditees to promote a favorable profile.

  • You should demonstrate a dedication to self-development, actively seek feedback to develop/update own skills and knowledge, accept and be responsive to constructive feedback.

  • Willingness to travel.