Job Description
Here at SmallWorld Financial Services, we know how important it is to be able to support friends and family from abroad. Put simply, we believe that the more people we can help transfer money to overseas family, friends and businesses, the smaller the world becomes.
Our employees are as diverse as our customer base and we value the sharing of skillsets and cultures that come with a truly international company present in several countries.
SmallWorld is one of the largest money transfer companies in the world. We have a network of over 253,000 pick-up locations and a global team of over 1000 people who are responsible for over 15 million worldwide transactions each year.
Are you passionate about working for a global company that celebrates differences? Do you want to empower people and families to support each other regardless of distance?
Then join us! Let's make this big world into SmallWorld.
Purpose of role:
Reporting to the Chief Internal Auditor (CIA), we are seeking a highly experienced and qualified IT and Change SME Auditor to provide assurance over the Group's IT and Change risks. This will be a new role within our Group Internal Audit team and the successful candidate will have ownership for developing and executing a portfolio of internal audits primarily focused on IT and Change risks. This role provides the opportunity to shape as well as lead audits in accordance with the Group Internal Audit plan and global IA methodology, harnessing a deep understanding of technology risks to provide high quality independent assurance on the effectiveness of controls. The role will focus on major technology transformation programmes as well as on business change andtransformation.
Role details:
Managing and delivering a portfolio of IT and Change internal audit portfolio.
Being agile and working across a range of different subjects and projects.
Developing a risk assessment and audit universe and an annual plan of work under area of responsibility.
Delivering Internal Audit engagements from planning through to execution and reporting.
Communicating risk findings, verbally and written, to key stakeholders in a pragmatic and helpful manner.
Engage proactively with Digital, IT and Change C-level and Senior leadership and second line of defence teams to identify critical functions and key controls.
Draft, review, finalize and communicate audit deliverables, including audit findings, memos and audit reports to CIA, senior and executive management. This includes follow-up reviews on audits conducted and tracking for all audit issues.
Prepare relevant risk and audit reporting to key stakeholders including executive management, CIA and governance committees.
Participate as a non-voting member of various IT and Change sub-committees, management working groups, promoting balanced discussions and encouraging challenge and debate.
Influence effective and sustainable improvements to processes and controls through insights gained based on risk and control expertise.
Provide insight on the evolving industry and best practice environment and interact with local or international regulators as appropriate.
Stay abreast of industry matters and efficiently and effectively apply applicable new developments in audit projects.
Person specification:
ACA / ACCA / CIA / CISA or a Bachelors / Master's Degree with a STEM focus (Science, Technology, Engineering or Math)
Strong experience of information technology infrastructure components required to operate and manage enterprise IT environments including, hardware, software, networking components, operating systems, and data storage environments.
Experience of activities required for the CIDO / IT function to deliver IT and Information Security services and solutions. Comfortable with cloud-based
architectures and services delivered as Infrastructure-as-a-Service (IaaS) and Software- as-a-Service (SaaS).
Cyber security experience including application security, PEN testing, IAM, vulnerability management best practices and security strategy required.
Demonstrated knowledge of modern software development processes and practices.
Experience with modernizing and migrating applications/clients to strategic architectures.
Experience of working on large scale technology and cloud transformation programmes, either through programme delivery or auditing.
The ability and skills to effectively manage C-level stakeholder relationships and demonstrating strong communication, technology and change auditing skills and business understanding.
The ability to work with multi-disciplinary teams - collaboration skills are key to achieving the Group and function's objectives.
Experience of data analytics.
Knowledge of Change and Programme management methodologies
Experience of writing detailed formal internal audit reports suitable for Executive audience.
Excellent verbal, written, and presentation skills. Ability to communicate with internal stakeholders, third parties, clients and regulators.
Experience of reporting and presenting to Board, Executive Committee or to the Audit Committee.
Good understanding of global internal audit standards, practices and methodologies.
Desirable Skills
CISSP, CISA, CISM, CRISC or CEH Certifications or equivalent.
Specialist system experience (i.e. SAP, Oracle, SQL, Python).
Broad experience across a variety of applications, technologies, and domains in the payments industry
Relevant experience migrating key product flows from heritage platforms onto next gen technology
Experience building hybrid cloud architectures leveraging Java, Kafka, Mongo, OSE and AWS.
Experience designing and implementing payments processing solutions using GPP-SP and its underlying tech stack (Java, Websphere, MQ, OracleDB)