Job details

IT Lead Auditor

Get a free resume review

** Work Arrangement: This is a hybrid position requiring in-office work multiple days every week and will ideally be based in Buffalo, NY.

Overview:

This position is responsible for executing internal audit examinations over the Bank’s Information Technology (IT) Engineering, Operations, Governance, Risk Management, and Architecture functions ensuring the timely and professional execution of the examinations in accordance with professional standards.

Primary Responsibilities

Plan, coordinate and maintain full ownership over execution of IT platform and infrastructure audit examinations and validation procedures in accordance with the Internal Audit Department’s audit methodology and professional standards. Work with the IT Infrastructure Audit Manager to establish appropriate budgets and timeframes for these examinations.
Independently document and communicate recommendations to Bank Management to improve internal controls and reduce risk to the organization.
Supervise other IT Audit staff as needed, per audit engagement.
Responsible for becoming intimately familiar with the organizational structure for the Bank’s Technology organization. Also, responsible (in collaboration with the IT Infrastructure Audit Manager) for understanding technology risks that may exist across the enterprise and ensuring the Audit Department’s overall Audit Plan effectively accounts for these risks.
Responsible for actively working with the Cybersecurity Audit team to ensure cybersecurity risks are accounted for within the scope of infrastructure audits.
Function as one of the primary point persons within the IT Audit group responsible for understanding the IT infrastructure, operations, engineering, risk management, architecture and governance functions in the organization. Expected to work with the IT Infrastructure Audit Manager to develop an effective approach to gaining this knowledge.
Working with the Infrastructure Audit Manager, keeping abreast of current developments and emerging issues and risks both within the Technology organization and the information technology industry, and apply gained knowledge to audit practices.
Responsible for staying apprised of key projects ongoing in the Technology organization. Function as a 'go to' person for the IT Audit group in regard to infrastructure projects and participate on these projects, and other investigations and initiatives as necessary.
Directly communicate with Senior, Middle and Line Management within the Technology organization, as well as External Auditors as needed, and maintain and enhance these professional relationships; and
Maintain ongoing communication with the 1st and 2nd line Technology Risk Management/Oversight organizations to align assurance activities, share risk information, and establish ongoing reliance approaches (as applicable)

Scope of Responsibilities

This individual leads and executes assurance activities and advisory services, maintains relationships and communicates with Bank Management, and oversees Auditors. They ensure activities are in conformance with professional auditing standards. They report to an Audit (Senior) Manager.

Education and Experience Required

Bachelor’s Degree, preferably in Accounting, Business, Finance, Technology, Cybersecurity, Mathematics, Statistics or other related technical field and 5 years of relevant work experience, and 1 year of leadership experience
Experience with internal audit methodology
IT Audit experience
Solid understanding of internal control concepts with the ability to evaluate adequacy of the controls
Strong leadership skills and ability to coach and develop others
Proven analytical and critical thinking skills
Excellent written and verbal communication skills with the ability to present sensitive and complex findings to business management and influence change
Proven ability to handle multiple projects at the same time

Education and Experience Preferred

Strong experience in infrastructure auditing (preferably in the banking/financial services sector);
Working knowledge and experience in auditing the following technologies
Windows Server, Unix/Linux Server, server virtualization systems, Network infrastructure, firewalls, VPN, and other types of security appliances, Wireless network infrastructure, Storage Area Network (SAN) environments, Data backup solutions, Microsoft Exchange email systems, Data Loss Prevention Systems, Telephony, SQL Server, Oracle, and DB2 database environments, MDM and MAM systems, middleware technologies, mainframe systems and related security products, file transmissions and job scheduling systems. Also would be helpful having experience with software defined technologies across infrastructure, emerging database technologies (i.e. NoSQL) and experience auditing enterprise data management technologies such as data warehousing, master data management and data lake tech is a plus.
Working knowledge of cloud computing risks and related controls frameworks
Working knowledge of modern delivery practices and supporting tech (agile, DevOps tools, etc.)
Working knowledge of API Management and associated security risks
Certification such as CISA, CISSP, CCSP, as well as other technical vendor certifications is a definite asset;
In-depth knowledge of ITIL Standards and core IT services such as change, problem, incident, and asset management;
Understanding of regulatory requirements as they relate to technology in the financial services industry;
Excellent verbal and written communication skills. Ability to convey complex conceptual information/ideas on issues requiring extensive interpretation and opinion. Experience in applying appropriate discretion when dealing with sensitive issues and conveying technical concepts in an easy to understand manner;
Proven ability in managing multiple audits, projects and initiatives simultaneously under tight deadlines;
Proven leadership skills, with the ability to develop and motivate teams;
Experience with TeamMate+ and TeamMate is a plus.
Strong organizational and resource management skills; and
Ability to travel when needed.

M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $85,104.04 - $141,840.07 (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.

Location

Buffalo, New York, United States of America

Average salary estimate

$113472 / YEARLY (est.)

min

max

$85104K

$141840K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About IT Lead Auditor, MTB

Join M&T Bank as an IT Lead Auditor in Buffalo, NY, where you'll play a pivotal role in shaping the integrity of our technology-driven operations. This hybrid position invites you to work in the office several days a week while immersing yourself in the critical realm of internal audits focused on IT engineering, operations, governance, risk management, and architecture. Your day-to-day will involve planning and executing comprehensive audit examinations across our IT platforms and infrastructure. You'll collaborate closely with the IT Infrastructure Audit Manager to set budgets and timelines, ensuring that audits adhere to professional standards. Your analytical skills will shine as you document and present actionable recommendations aimed at enhancing internal controls and mitigating risks. Leading and mentoring fellow audit staff, you’ll foster a culture of excellence and development. Additionally, you’ll get acquainted with our technology organization’s structure and develop an in-depth understanding of technology risks across the enterprise. This includes working hand-in-hand with the Cybersecurity Audit team to encompass cybersecurity concerns within your audits. Moreover, you’ll remain on the cutting edge of industry trends and emerging risks to apply knowledge that keeps M&T Bank at the forefront of the financial services field. We value leadership and strong communication skills, and as the primary point of contact for IT audits, your ability to build relationships within and outside the bank will be essential. Step into this exciting role and make an impact at M&T Bank!

Frequently Asked Questions (FAQs) for IT Lead Auditor Role at MTB

What are the primary responsibilities of the IT Lead Auditor at M&T Bank?

The IT Lead Auditor at M&T Bank is responsible for executing internal audit examinations of the Bank's IT functions, including areas like engineering, operations, and risk management. This role entails planning and coordinating audits, documenting and presenting recommendations to management, and supervising other audit staff as necessary to improve internal controls and reduce organizational risk.