Organization: At CommBank, we never lose sight of the role we play in other people's financial wellbeing. Our focus is to help people and businesses move forward to progress. To make the right financial decisions and achieve their dreams, targets, and aspirations. Regardless of where you work within our organisation, your initiative, talent, ideas, and energy all contribute to the impact that we can make with our work. Together we can achieve great things.
Job Title: Senior Analyst - GCCO Automated Control Testing and Assurance
Location: Bengaluru-Manyata Tech Park
Business & Team: The Business Banking risk team identifies and mitigates potential risks, ensuring the financial stability and compliance of our commercial banking operations.
GCCO (Group Chief controls office) automated control testing and assurance team ensures compliance and operational efficiency through meticulous control assessment.
Our team is committed to enhancing control frameworks and mitigating risks with thorough and consistent testing processes.
Impact & Contribution: By conducting thorough control testing, you will help mitigate risks associated with financial reporting, operational processes, and compliance, ensuring the integrity of our financial statements and operations.
Roles & Responsibilities: This role is focused on, but not limited to:
- Execute quarterly automated control assurance testing schedule across Business and Support Units controls.
- Assure automated controls are fit for purpose and meet control objective in mitigating the relevant risks and obligations.
- Support, contribute, question and document walk-throughs held with multiple stakeholders to perform necessary in-depth control testing including code/configuration inspection and scenario testing.
- Draft, execute, document and conclude on automated control design and operational effectiveness testing.
- Review and challenge Business/Support Units on critical data elements coverage, design and operation of automated/semi-automated controls being tested.
- Utilize sound SQL and IT assurance expertise to hold technical discussions on the design and code used for data capture, extract, load and transfer as part of data related control assurance.
- Provide guidance to internal stakeholders on addressing identified control deficiencies.
- Assist the Executive, Senior Manager and Manager to uplift and roll out the automated control testing and continuous monitoring capability and methodology, including leveraging analytics skill set.
- In this role you will:
- Provide Business/Support Units with an assurance outcome over the design and operating effectiveness of automated/semi-automated controls.
- Work closely with the business, Chief Controls Office (CCO)/Line 1 Risk community and technology teams in technical code reviews as part of control design and operational effectiveness testing to ensure the control is both fit for purpose and use.
- Drive continuous improvement of the Group's Control Environment through the provision of insights and reporting to enable the timely and effective remediation of controls.
- Drive continuous improvement of CAP through implementation of continuous control monitoring, automation and control rationalisation.
Essential Skills:
- Knowledge of and 5+ years relevant work experience in IT external audit, IT internal audit, IT risk and regulatory management strategies and techniques, (including SoX 404).
- Tested and validated automated controls using SQL expertise (mandatory). Experience in the use of SQL to write queries.
- Postgraduate studies in Risk, Compliance, IT, Systems Auditing, Risk Management (highly regarded).
- Experience (5+ years) in applying relevant technical knowledge in at least the following engagements: internal or operational audits, ISAE 3402, ISAE 3150 or SSAE16 attestation engagements for third parties, technology security and IT control reviews and/or business process reviews.
- Minimum of 5 years of client-facing experience with stakeholder management, preferably in financial services or another highly regulated industry.
- Strong analytical and problem-solving skills with excellent written and verbal communication skills.
- Experienced in testing life cycle (i.e., scope, plan, schedule, evaluate, remediate) to testing team, Business Units, technology and data office teams with an ability to work independently and as part of a team.
- Knowledge of compliance standards and control assurance frameworks.
- Technology risk management experience in large, complex and critical technology/system/IT environments.
- Knowledge of Australian and International regulatory frameworks with technology risk management concepts and processes.
- Professional services skills demonstrated through the analysis, design and review of technology, system, process and control roadmaps.
- Ability to collaborate with geographically distributed teams across multiple technical areas.
- Excellent data analysis skills and the ability to analyze and report on control assurance activities in risk terms.
Education Qualifications:
- Bachelor's degree / Master's degree in Information Technology/Systems, Computer Science/ Engineering, Business Administration or related field.
- Professional certifications such as CISA, CISM, CISSP, CGEIT, ITIL, ISO2000, ISO27001 is preferred.
If you're already part of the Commonwealth Bank Group (including Bankwest, x15ventures), you'll need to apply through Sidekick to submit a valid application. We're keen to support you with the next step in your career.
We're aware of some accessibility issues on this site, particularly for screen reader users. We want to make finding your dream job as easy as possible, so if you require additional support please contact HR Direct on 1800 989 696.
Advertising End Date: 16/11/2024