Assistant Vice President, Audit (IT)

Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.

Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

Responsibilities:

Audit Planning and Execution

• Experienced in undertaking and executing end to end audit engagement including identification of key risks factors and drafting of audit programs.
• Take responsibility to plan and carry out audit assignments according to the risk-based audit plan and/or other ad-hoc assignments with appropriate updates to Audit Planning Memo, Audit Program etc. that in accordance with the needs of the Board Audit Committee, Parent Bank, or regulatory authorities. The assignments should be carried according to the warranted timeline and schedule as prescribed by the Chief Internal Auditor.
• Able to understand the business, risk and controls through information gathered on the audit scope area, involvement in walkthroughs and discussions with management including reviewing the adequacy and efficiency of the controls in place via review of documented procedures and conducting audit testing.
• Working papers are documented properly in accordance with Audit Methodology and approved within the established deadline. This includes drafting internal audit report for discussion with management and auditee management, including display of good and concise presentation of issues/risks.
• Responsible for discussing the audit report and findings with senior management and ensuring that appropriate responses are obtained for each issue raised in the report, including demonstration of good conflict management skill, and remaining professional when criticized.
• Able to seek opportunities to increase the use of data analytics testing and actively uses data analytics to improve the controls testing where possible.
• Reporting on control deficiencies to Chief Internal Auditor and making recommendations to mitigate risk and add value. 
• For irregular transactions found whilst carrying out the tests, applicant is authorized to instruct the Department(s) concerned to furnish the required information for thorough examination and reporting to the Chief Internal Auditor.
• To ensure effective closure of audit assignments, i.e., exit meetings and/or issuance of audit reports (or equivalent) to communicate results of assessment and review for Management's action.
• To follow up and ensure proper closure on audit recommendations of Internal Audit Department, Regulatory and other outsource audits, respectively.

Stakeholder engagement

• Able to work in a team to collaborate and reporting to Vice President and Chief Internal Auditor for delivery of audit assignments and engagements.
• Assist in guiding junior auditors on an assignment basis, with responsibility for coaching and mentoring individuals and providing feedback on performance following completion of each assignment.
• Promote a team effort approach and show appreciation for contributions of team members, creating a positive work culture.
• Maintain strong working relationships with IT, Risk, Compliance, and senior management to facilitate audit activities and risk assessments independently.
• Good communication skills with the ability to influence others and build good rapport with internal departments especially IT Department, Regional and Head Office.
• Collaborate with regional and global IT Audit teams, sharing insights and best practices.
• Provide advisory support on emerging IT and cybersecurity risks, regulatory changes, and industry developments when necessary.

Experience and competencies requirements:

• Applicant must have a recognized Degree in Computer Science, Computer Engineering, Information Technology, or its equivalent from a recognized university/higher learning institution with minimum of 7 years or more of relevant experience in internal audit and/or external audit firm or IT security with relevant exposure to cybersecurity risk management including phishing detection, sensitive data leakage monitoring and automated thread mitigation.
• Should possess strong technical skills and knowledge in the cyber/technology security domains, preferably with working experience in cyber/IT security role with strong understanding of IT governance, risk management, and cybersecurity frameworks (e.g., RMIT, NIST, COBIT, ISO 27001).
• Should possess good analytical and critical thinking skills and risk aptitude.
• Should be certified in cyber/IT security domains (e.g., with certifications such as CISA, CISSP, and/or CISM) and CBA would be an advantage.
• Strong technical knowledge in understanding of multiple technology domains including but not limited to:

• Operating System i.e., Windows/Linus/AS400, database management and applications.
• Cybersecurity & penetration testing
• Cloud security & virtualized environments (VDI, containerization)
• Network security & IT infrastructure architecture
• Software development, DevSecOps, and application security

• Ability to handle multiple assignments, meet deadlines, and maintain high-quality audit standards.
• Excellent written and oral communication skills.

Mitsubishi UFJ Financial Group (MUFG) is an equal opportunity employer. We view our employees as our key assets as they are fundamental to our long-term growth and success. MUFG is committed to hiring based on merit and organsational fit, regardless of race, religion or gender.