Leads and executes audits over the Bank’s Information Technology (IT) Engineering, Operations, Governance, Risk Management and Architecture functions or technology supporting core business operations. Communicate audit progress and findings to Bank management and oversee Auditors (as applicable) on assigned audit activities.
Lead and participate in audits from planning to reporting and produce quality deliverables in accordance with the Division’s methodology and professional standards while ensuring timely completion.
Plan and execute other assurance activities (including continuous monitoring & auditing, product delivery assessments, validation procedures, investigations, and retrospective reviews) utilizing modernized assurance methodologies, tools, and approaches and in accordance with the Division’s methodology.
Write audit findings that clearly identify risk and root cause. Communicate findings to Bank management in a timely fashion.
Partner with stakeholders, business management and Risk Management establishing strong working relationships while maintaining independence.
Embrace innovative change and help the team adapt to change.
Effectively incorporate data analytics and other automation techniques into all phases of audits and other activities.
Maintain knowledge in the assigned subject matter discipline.
Coach, develop and oversee work of Auditors and new hires, including executing review and supervision.
Embrace and exemplify the culture of engagement and belonging.
Contribute to the achievement of Division priorities.
Understand and adhere to the Company’s risk and regulatory standards, policies, and controls in accordance with the Company’s Risk Appetite. Identify risk-related issues needing escalation to management.
Promote an environment that supports belonging and reflects the M&T Bank brand.
Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
Complete other related duties as assigned.
This position leads and executes assurance activities, maintains relationships, and communicates with Bank management, and oversees Auditors. The position ensures activities are in conformance with professional auditing standards. The jobholder reports to an Audit (Senior) Manager.
Bachelor’s degree and a minimum of 5 years’ relevant work experience, or in lieu of a degree, a combined minimum of 9 years’ higher education and/or work experience, including a minimum of 5 years’ relevant work experience
Minimum of 1 year’s leadership experience
Experience with internal audit methodology
Solid understanding of internal control concepts
Experience evaluating adequacy of the controls
Strong leadership skills
Experience coaching and developing others
Proven analytical skills
Proven critical thinking skills
Excellent verbal and written communication skills
Experience presenting sensitive and complex findings to business management and influencing change
Proven ability to handle multiple projects at the same time
Experience in challenging the status quo and defending conclusions when challenged
Bachelor’s degree in Accounting, Business, Finance, Technology, Cybersecurity, Mathematics, Statistics, or related technical field
MBA or Master’s Degree in an appropriate field
Related professional certifications (CIA, CPA, CISA, CISSP, cloud certification, or similar)
Financial services industry experience
Strong experience in infrastructure auditing (preferably in the banking/financial services sector)
Working knowledge and experience in auditing server operating systems, server virtualization systems, database management platforms, middleware technologies, storage infrastructure, network infrastructure, firewalls, VPN, and other types of security appliances, data backup solutions, email management systems, mainframe systems and related security products, file transmissions and job scheduling systems.
Working knowledge of cloud computing risks and related controls frameworks
Working knowledge of modern delivery practices and supporting tech (agile, DevOps tools, etc.)
Working knowledge of API Management and associated security risks
Working knowledge of ITIL Standards and core IT services such as change, problem, incident, and asset management
Understanding of regulatory requirements as they relate to technology in the financial services industry
M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $89,600.00 - $149,300.00 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.
Buffalo, New York, United States of America
Great companies have an enduring sense of purpose. At M&T, our purpose is a simple one: make a difference in people’s lives and uplift the communities we serve. Founded in 1856 in Buffalo, NY we are now a top 11 full-service US-based commercial bank with a retail footprint across the east coast and wealth services available nationwide and abroad. As a bank, we offer advice, guidance, expertise, and solutions across the entire financial spectrum that combines M&T’s traditional banking services with the wealth management and institutional capabilities offered by Wilmington Trust. We are a community-minded organization with more than 167 years of experience. We serve customers, community, and colleagues whether they be across the street, across the state or across the country.
As an employer of choice, we are proud to offer competitive benefits ranging from medical and retirement to forty hours of paid volunteer time, each year. Our core values drive the work we do – integrity, ownership, collaboration, curiosity, candor and we seek to further build upon our record of success by bringing in top talent and fresh skill sets while continuing to support the growth and development of all our team members.
M&T Bank is unwavering when it comes to providing equal employment opportunities to all employees and applicants without regard to race, color, national origin, religion, ethnicity, sex, gender identity, age, disability, citizenship, pregnancy, veteran status, military status, marital status, sexual orientation, genetic information or any other characteristic protected under applicable federal, state or local laws.
