CrawlJobs Logo

Senior Auditor - Resilience (Technology)

https://www.citi.com/ Logo

Citi

Location Icon

Location:
India , Mumbai

Category Icon
Category:
Finance

Job Type Icon

Contract Type:
Employment contract

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The Senior Auditor is an intermediate level role responsible for performing moderately complex Technology audits and assessments of Citi’s risk and control environments in coordination with the Audit team. The overall objective is to utilize in-depth subject matter expertise in Resilience (Technology) to ensure that the firm meets audit standards and regulations and to work with business leaders to determine solutions for emerging issues.

Job Responsibility:

  • Consistently execute control testing and deliver audits, in a timely manner, in accordance with Internal Audit and Regulatory standards
  • Prepare the Business Monitoring Quarterly Reviews
  • Prepare Risk Assessments as required
  • Collaborate with teams across the business and determine risk impacts on the overall control environment and audit approach
  • Execute audit activities for assigned work and the associated entities
  • Apply in-depth understanding of Internal Audit standards, policies and regulations to a specific product or function area
  • Appropriately assess risk when business decisions are made, demonstrating consideration for the firm's reputation and safeguarding Citigroup, its clients, and assets, by driving compliance with applicable laws, rules, and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing, and reporting control issues with transparency

Requirements:

  • 6-8 years of Internal Audit experience
  • Internal Audit Experience from a highly regulated industry, such as Financial, Banking, Insurance, or similar
  • Highly preferred candidates will have EXECUTED WORKPAPERS through many different audit engagements
  • Audit experience in at least one of the following areas: Cyber/Infrastructure, Technology, Third Party, Operational Resilience, or Business Continuity
  • Related certifications (CIA, CISA, CISSP, CRISC, or similar) is PREFERRED
  • Effective verbal, written and negotiation skills
  • Effective project management skills
  • Effective leadership skills
  • Effective influencing and relationship management skills
  • Demonstrated ability to remain unbiased and independent in a diverse and challenging work environment
  • Bachelor's/University degree, Master's degree preferred

Nice to have:

  • Related certifications (CIA, CISA, CISSP, CRISC, or similar)
  • Effective influencing and relationship management skills
What we offer:
  • Extensive on-the-job training and exposure to senior leaders
  • Programs and services for physical and mental well-being including access to telehealth options, health advocates, confidential counseling
  • Expanded Paid Parental Leave Policy
  • Access to an array of learning and development resources
  • Generous paid time off packages
  • Resources and tools to volunteer in the communities

Additional Information:

Job Posted:
March 22, 2025

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Citi - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Auditor - Resilience (Technology)

New

Strategic Initiatives Program Lead – Senior Vice President

Citi Belfast is one of the largest employers in Northern Ireland with a diverse ...
Location
Location
United Kingdom , Belfast
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Progressive technology leadership experience in large, complex organizations
  • Senior leadership roles managing large teams and strategic programs
  • Experience in resiliency, disaster recovery, business continuity, or operational risk management
  • Proven track record leading enterprise-wide transformation initiatives in highly regulated industries
  • Experience managing responses to regulators and navigating complex compliance requirements
  • Deep understanding of application architecture, distributed systems, and cloud technologies
  • Knowledge of disaster recovery, business continuity, and operational resilience frameworks
  • Familiarity with SRE principles, chaos engineering, and automated recovery practices
  • Understanding of regulatory requirements for operational resilience in financial services
  • Experience with enterprise platforms, APIs, and system integration strategies
Job Responsibility
Job Responsibility
  • Strategic Leadership & Vision: Lead strategic initiatives in support of enterprise strategy and resilience across all technology organizations, ensuring alignment with business priorities, regulatory requirements, and industry best practices
  • Provide executive leadership for the resiliency program, overseeing the workstreams to drive progress
  • Establish strategic partnerships with senior technology leaders, business executives, Enterprise Resilience, Risk Management, and regulatory stakeholders to drive resiliency transformation
  • Champion organizational change to embed resiliency-first thinking into application development, architecture decisions, and operational practices
  • Governance & Regulatory Compliance: Ensure compliance with regulatory requirements for operational resilience across all jurisdictions, including MAS, OCC, PRA, and other regulatory mandates
  • Oversee the Enterprise Criticality Framework, ensuring accurate framework to identification of Enterprise Critical Applications (ECAs) and alignment with Critical Business Services (CBS)
  • Support engagement with regulators and auditors on resiliency matters, providing evidence of program effectiveness and compliance
  • Drive resolution of regulatory findings and Corrective Action Plans (CAPs) related to application resiliency and recovery capabilities
  • Program Oversight & Accountability: Provide executive oversight and accountability for the resiliency program, ensuring delivery of strategic initiatives and achievement of annual targets
  • Monitor program health, risks, and performance metrics, making strategic decisions to optimize outcomes and resource allocation
What we offer
What we offer
  • 27 days annual leave (plus bank holidays)
  • A discretional annual performance related bonus
  • Private Medical Care & Life Insurance
  • Employee Assistance Program
  • Pension Plan
  • Paid Parental Leave
  • Special discounts for employees, family, and friends
  • Access to an array of learning and development resources
  • Fulltime
Read More
Arrow Right

Principal Specialist Technology Resilience

To manage and implement IT Resilience and Payment Services technology resilience...
Location
Location
South Africa , Johannesburg
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
May 07, 2026
Flip Icon
Requirements
Requirements
  • BSC degree or equivalent qualification in IT (essential)
  • MBA (advantage)
  • PECB Certified Lead Disaster Recovery Manager
  • Certified Information Systems Auditor (CISA) or Certified Cloud Security Professional (CCSP)
  • Minimum of 8 years’ experience within IT architecture and related function (essential)
  • 3–5 years’ experience in IT resilience and related projects (essential)
  • Managing of highly professional teams (essential)
  • In-depth knowledge of Vodacom’s IT and Payment architecture and domain functions (advantage)
  • Experience in Business Continuity Management and knowledge of ISO22301 and BCI Good Practice Guidelines (advantage)
  • Willing to travel up to 40% of time within Africa
Job Responsibility
Job Responsibility
  • To manage and implement IT Resilience and Payment Services technology resilience principles and best practice across all Vodacom markets and Subsidiaries with more than 50% ownership, referred to as entities
  • To ensure that new and revised Vodafone IT Resilience & Transformation policies, guidelines, standards and requirements are communicated and implemented by technology groups across all Vodacom markets
  • To draft specific Vodacom Group technology resilience policies and related procedures applicable to all Vodacom entities
  • To enhance existing procedures, standards and guidelines to develop and maintain technical recovery plans and procedures and implement enhanced procedures and solutions
  • To ensure that knowledge regarding IT and Payment resilience concepts and requirements is transferred to the Vodacom entities
  • To develop and maintain a technical recovery toolkit to ensure implementation of effective technical recovery plan maintenance including Technology Impact Assessment (TIA) and the interface with business-as-usual processes and systems
  • To develop resilience strategies applicable to technologies supporting critical services across Vodacom entities
  • To perform risk reviews using a consistent methodology on technologies that support Vodacom’s critical services and to evaluate single points of failures and threats which could cause service level unavailability
  • To implement cost effective solutions whilst considering optimal design criteria for resilience and mitigating critical risks
  • To liaise with all technology groups across the Vodacom entities and Subject Matter Experts (SME) to ensure that adequate resilience and redundancy arrangements are in place for current and future technologies
What we offer
What we offer
  • Enticing incentive programs and competitive benefit packages
  • Retirement funds, risk benefits, and medical aid benefits
  • Cell phone and data benefits, advantages fibre connection discounts, and exclusive staff discounts offered in collaboration with partner companies
  • Fulltime
!
Read More
Arrow Right

Chief Auditor Technology & Business Enablement International and Wealth International Technology

The Managing Director, Chief Auditor Technology & Business Enablement Internatio...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 15 years of diversified management experience in audit or a related role with a focus on cyber, technology resilience and data
  • Demonstrable technology experience, including that related to the design and operation of risk and controls frameworks
  • Demonstrable product knowledge of Markets, Services, Payments Infrastructures, Corporate and Consumer Banking and Wealth Management, including the provision of technology services within these areas
  • International experience is preferred within highly respected, diversified and complex institutions
  • Proven experience working with regulators and managing regulatory audits or inspections
  • Bachelor’s degree/University degree in computer science, data science, finance, accounting, science or a related field, or equivalent experience
  • Master’s degree preferred
  • Related certifications such as Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified in Risk and Information Systems (CRISC) or similar
  • Technical Skills: A strong level of technical knowledge related to cyber security, resilience, current and emerging technologies and systems development best practices
  • Strong knowledge of IT governance and control frameworks (e.g. COBIT, NIST, SANS)
Job Responsibility
Job Responsibility
  • Assurance Risk Assessment, Strategy & Coverage: Timely development, risk assessment, and periodic refresh of the audit plan
  • Responsible for the coordination and delivery of high-quality, value-add multiple concurrent risk-based audits
  • Engagement with senior stakeholders upon receipt of supervisory letters/other regulatory communications
  • Timely delivery of high-quality and comprehensive regulatory and internal audit issue validation
  • Support and endorse the IA Quality Assurance (QA) team
  • Ensure that IA activity is sufficient and relevant to delivering timely assurance
  • Appropriately assess risk when business decisions are made
  • In collaboration with the IA International team, ensure that country-specific technology, cyber and resilience regulatory requirements are understood
  • In collaboration with the Chief Auditor for US Wealth, USCC & Functions, support the integrated risk assessment, audit plan creation and opinion for the Global Wealth business
  • Working in close collaboration with the QA team, lead the processes across Technology & Business Enablement to assess the quality outcomes of assurance work
  • Fulltime
Read More
Arrow Right

Chief Auditor Technology & Business Enablement International and Wealth International Technology

The Managing Director, Chief Auditor Technology & Business Enablement Internatio...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 15 years of diversified management experience in audit or a related role with a focus on cyber, technology resilience and data
  • Demonstrable technology experience, including that related to the design and operation of risk and controls frameworks
  • Demonstrable product knowledge of Markets, Services, Payments Infrastructures, Corporate and Consumer Banking and Wealth Management, including the provision of technology services within these areas
  • International experience is preferred within highly respected, diversified and complex institutions
  • Proven experience working with regulators and managing regulatory audits or inspections
  • A strong level of technical knowledge related to cyber security, resilience, current and emerging technologies and systems development best practices
  • Strong knowledge of IT governance and control frameworks (e.g. COBIT, NIST, SANS)
  • Good understanding of AI and machine learning concepts, algorithms and techniques
  • Familiarity with data governance principles, data quality management and data privacy practices
  • Strong understanding of internal audit standards (e.g. IIA Standards) and risk management frameworks (e.g. COSO)
Job Responsibility
Job Responsibility
  • Timely development, risk assessment, and periodic refresh of the audit plan for the scope of the role’s area of responsibilities
  • Coordination and delivery of high-quality, value-add multiple concurrent risk-based audits
  • Engagement with senior stakeholders upon receipt of supervisory letters/other regulatory communications
  • Timely delivery of high-quality and comprehensive regulatory and internal audit issue validation
  • Support and endorse the IA Quality Assurance (QA) team to address and resolve issues found by QA
  • Ensure that IA activity is sufficient and relevant to delivering timely assurance
  • Appropriately assess risk when business decisions are made
  • In collaboration with the IA International team, ensure that country-specific technology, cyber and resilience regulatory requirements are understood
  • In collaboration with the Chief Auditor for US Wealth, USCC & Functions, support the integrated risk assessment, audit plan creation and opinion for the Global Wealth business
  • Working in close collaboration with the QA team, lead the processes across Technology & Business Enablement to assess the quality outcomes of assurance work
  • Fulltime
Read More
Arrow Right
New

Head of Operational Resilience Management

The Head of Operational Resilience Management will be responsible for developing...
Location
Location
United States , NEW YORK
Salary
Salary:
200000.00 - 250000.00 USD / Year
credit-agricole.com Logo
Crédit Agricole
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor Degree / BSc Degree or equivalent
  • Minimum 10+ years of experience in information security or related field
  • At least 3 years of experience in a senior leadership role within the banking or financial services industry
  • Incident Management: Ability to analyze, prioritize, and manage security incidents effectively
  • Strategic Thinking: Ability to align cyber risk initiatives with business objectives
  • Communication and Documentation: Strong ensure thorough documentation and clear communications over security operations activities
  • Leadership and Team Management: Proven track record of building and leading high performing teams
  • Regulatory Compliance: Expertise in navigating banking regulations
  • Industry Thought Leadership: Recognized as a subject matter expert in the cybersecurity or risk management space
  • Technical Knowledge: Strong knowledge with information security technologies such as vulnerability scanning tools, and threat intelligence tools, etc.
Job Responsibility
Job Responsibility
  • Develop and implement a comprehensive operational and cyber resiliency strategy aligned with regulatory requirements and industry standards
  • Define resilience objectives, key risk indicators (KRIs), key performance indicators (KPIs), key control indicators (KCIs) and other relevant metrics to measure the effectiveness of resiliency programs
  • Collaborate with senior leadership to embed resilience principles into business and technology processes
  • Stay ahead of emerging risks, regulatory changes, and threat landscapes to refine and enhance resilience strategies
  • Oversee the development and execution of the bank’s incident management framework, ensuring rapid response and recovery from information security and technology incidents
  • Lead and design tabletop exercises and simulations to test cyber incident response and business recovery capabilities
  • Coordinate with internal and external stakeholders (e.g., regulators, law enforcement, third-party service providers) during cyber events
  • Ensure integration of cyber resilience into broader enterprise risk management and IT security functions
  • Develop and maintain enterprise-wide business continuity and disaster recovery plans, ensuring readiness to sustain critical business operations during disruptions
  • Conduct regular BC/DR testing, audits, and training sessions to validate effectiveness and improve preparedness
  • Fulltime
Read More
Arrow Right
New

Head of Resilience Management for APAC-ME

Summary The Head of Resilience management for APAC-ME will be responsible for de...
Location
Location
Singapore , Singapour
Salary
Salary:
Not provided
credit-agricole.com Logo
Crédit Agricole
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in operational resilience, business continuity, or risk management within the financial sector
  • Proven leadership experience
  • Deep understanding of regulatory requirements in Asia DORA, with experience managing regulatory interactions
  • Bachelor’s or Master Degree in Computer Science, Information Technology, Business continuity or equivalent
  • Professional certification such as CBCM, CBCI, CBCP (preferred)
  • Expertise in incident response methodologies, business continuity planning and in cyber resilience frameworks
  • String knowledge of CIB activities in order to be able to talk with the Business Lines and understand their constraints
  • Strong knowledge of operational resilience risk management, threat intelligence, and IT disaster recovery strategies
Job Responsibility
Job Responsibility
  • Develop and implement a comprehensive operational resiliency strategy aligned with regulatory requirements and industry standards
  • Define resilience objectives, key risk indicators (KRIs), and performance metrics to measure the effectiveness of resiliency programs
  • Collaborate with senior leadership to embed resilience principles into business and technology processes
  • Stay ahead of emerging risks, regulatory changes, and threat landscapes to refine and enhance resilience strategies
  • Oversee the development and execution of the bank’s resilience framework, ensuring rapid response and recovery from incidents
  • Lead tabletop exercises and simulations to test cyber incident response and business recovery capabilities
  • Coordinate with internal stakeholders during crisis
  • Coordinate and maintain enterprise-wide business continuity and disaster recovery plans with the different stakeholders in the Entities, ensuring readiness to sustain critical business operations during disruptions
  • Coordinate and conduct with the different stakeholders in the Entities regular BC/DR testing, audits, and training sessions to validate effectiveness and improve preparedness
  • Work closely with technology teams to ensure recovery time objectives (RTOs) and recovery point objectives (RPOs) are met for critical systems
Read More
Arrow Right

Application Auditor

Join us as an AVP – Application Auditor. You will assess and enhance application...
Location
Location
United States , New York
Salary
Salary:
95000.00 - 150000.00 USD / Year
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience auditing system control environments, including internal/external audit or risk management functions
  • Proven ability to develop and execute testing strategies to assess control environments effectively
  • Demonstrated expertise in risk-based technology auditing (e.g., technology risk, security, resilience, IT operations, data management)
  • Familiarity with regulatory environments and ability to interpret compliance requirements
  • Preferred certifications or qualifications such as CISA, CPA/CIA, or technical/graduate credentials
  • Experience or exposure to data analytics and/or machine learning techniques
Job Responsibility
Job Responsibility
  • Audit development and delivery support, including financial statements, accounting practices, operational processes, IT systems and risk management
  • Identification of operational risks to support the delivery of the Barclays Internal Audit (BIA) Audit Plan through risk assessments
  • Assessment of internal control effectiveness and their capability to identify and mitigate risk aligned to regulatory requirements
  • Communication of key findings and recommendations to stakeholders, including the Audit Owner, senior managers and directors
  • Identification of regulatory news and industry trends/developments to provide timely insight and recommendations for best practice
What we offer
What we offer
  • Hybrid working
  • Structured approach to hybrid working with fixed, ‘anchor’, days
  • Supportive and inclusive culture and environment
  • Commitment to flexible working arrangements
  • Fulltime
Read More
Arrow Right

Senior Audit Manager – AI Technology, Cyber, Data and GenAI Engineering

The Senior Audit Manager is within the AI Technology, Cyber, Data and GenAI Engi...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Previous experience in a related role
  • Sound understanding in AI Technology, Cyber, Data and GenAI Engineering
  • Understanding of GenAI security, data and operational architecture
  • Understanding of financial services regulations and how they intersect with AI/GenAI e.g. conduct risk, operational resilience, data protection, algorithmic trading, AML/KYC, consumer protection
  • Related certifications such as Certified Information Systems (CISA), Certified Internal Auditor (CIA), Certified in Risk and Information Systems (CRISC) or similar
  • Demonstrated successful experience in business, functional and people management
  • Proven ability to execute concurrently on a portfolio of high quality deliverables according to strict timetables
  • Demonstrated ability to implement continuous improvement and innovation in audit tools and techniques
  • Consistently demonstrates clear and concise written and verbal communication
  • Demonstrated ability to remain unbiased in a diverse working environment
Job Responsibility
Job Responsibility
  • Deliver audit reports, Internal Audit and Regulatory issue validation and business monitoring and governance committee reports relating to AI Technology, Cyber, Data and GenAI Engineering
  • Act as a trusted subject matter experts on AI Technology, Cyber, Data and GenAI Engineering across the IA team
  • Oversight of portfolios within the AI Technology, Cyber, Data and GenAI Engineering team including stakeholder engagement, assessment of key emerging and inherent risks, etc
  • Participate in business initiatives and pro-actively advise and assist the business on change initiatives
  • Implement integrated auditing concepts and technology, and follow trends in the Audit field and adapt them for the Audit function
  • Identify solutions for a variety of complex and unique control issues, utilizing complex judgement and sophisticated analytical thought
  • Analyse report findings, and recommend interventions where needed, proposing creative and pragmatic solutions to risk and control issues
  • Partner with Directors and Managing Directors to develop approaches for addressing broader corporate emerging issues
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behaviour, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of others and create accountability with those who fail to maintain these standards
  • Fulltime
Read More
Arrow Right