Global Markets, IT Audit Assistant Vice President

Profile Summary

Mizuho operates a Three Lines of Defence approach to risk management with Internal Audit forming the third (and last) line. Internal Audit operates independently to assess the effectiveness of key first and second line control processes.

Within Internal Audit the IT Audit team is responsible for is responsible for assessing the design and operating effectiveness of the firms risk management frameworks and internal controls within the Information Technology (IT) and Information Security (IS) departments. This ranges from IT operations e.g. change and release management IT Security e.g. Firewall and Cybersecurity configuration to markets and banking applications.

We are seeking an ambitious auditor to join our IADE team. The main objective of the role involves evaluating the scope and design of the firms internal controls and testing their is the perfect opportunity for a successful auditor to specialise gain specific SME knowledge and to become a part of a growing function.

Duties and Responsibilities

You will be supporting audits covering all aspects of the IT and IS departments activities. Typically this will involve working under the guidance of senior team members and/or audit leads. You will conduct audits of various risk and controls prepare and review planning identify key risks execute fieldwork document work completed communicate audit issues and validate issue closure requests. Duties will include:

• Conducting risk assessments and evaluation of internal controls to ensure compliance with regional and Japanese regulations. Assessing and analysing potential risks within processes and systems.
• Executing assigned testing procedures to assess the effectiveness of internal controls identifying any relevant deficiencies drafting audit issues and validating closure requests.
• Completing quality assignments to deadlines and within budget.
• Supporting comprehensive planning and fieldwork of assignments across IT specific and integrated audits.
• Documenting findings preparing work papers communicating observations to management and contributing to/preparing draft reports.
• Collaborating with wider IADE and cross-functional teams to enable the implementation of corrective actions and improvement of internal controls.
• Actively engaging and maintaining positive relationships with stakeholders.
• Contributing to continuous monitoring (risk impact analysis) and gathering the appropriate data and information.
• Ensuring compliance with internal audit methodologies quality standards as well as legal and regulatory requirements across the region.
• Timely and accurate completion of assigned mandatory training and administrative tasks.
• Supporting IADEs team objectives and initiatives.

Qualifications Skills and Experience

Experience

• At least 3 years work experience in internal audit and/or SOX.
• Knowledge of financial services industry/products is required. Securities/Markets business knowledge is an advantage.
• Knowledge and/or experience of the following areas is essential:
• IBM Mainframe AS/400/iSeries Windows UNIX Linux
• Database MS SQL Sybase Oracle MongoDB
• Virtualisation and Citrix based solutions
• High-frequency trading platforms markets/banking applications.
• Cloud based SAS (both Public and Private implementation) solution exposure including risk assessments. (AWS MS Azure GCP)
• ITIL/ISO27001/SWIFT CSP certification experience
• Network Infrastructure review (Firewall reviews Penetration testing review experience)
• Identity & Access Management.
• Voice & Telephony technology exposure and audit exposure
• Cybersecurity products exposure (CyberArk Gaudium Sentinel Qualys)
• Operational Resilience including DORA Data Centre Operations Business Continuity and Disaster Recovery.
• Software Development Lifecycle Process.
• Knowledge of data analytics would be an advantage.

Qualifications

• Bachelors Degree or equivalent.
• Actively studying towards or possession of a professional:
• auditing qualification such as Certified Internal Auditor (CIA) Certified Information Systems Auditor (CISA) Qualification in Computer Auditing (QiCA) or equivalent; and/or
• specialist certifications.

Skills

• Effective communication skills at all levels of the business.
• Great organisational and time management skills.
• Strong numerical and analytical skills.
• Demonstrated ability to innovate support change and solve problems.
• Collaborative nature to contribute to a successful team performance.
• Language skills are an asset but not essential.

What Mizuho can offer you

Here at Mizuho there are fantastic progression opportunities and clear paths to promotion. We will give you ample opportunity to affect change and to help grow our business.

In addition to the great opportunity outlined above we are also currently able to offer:

• Competitive starting salary plus discretionary bonus
• Non-contributory pension
• 27 days annual leave
• Core working hours*
• Hybrid working - office and home based*
• Virtual GP
• Wellbeing benefits including Mental Health Allies and First Aiders

*For applicable roles only

At Mizuho we embrace flexible ways of working when the role permits. We offer different working arrangements like part-time job-sharing and hybrid (office and home) working. Our purpose-led culture and global infrastructure help us connect collaborate and work together in agile ways to meet all our business needs.

At Mizuho we are committed to supporting equality diversity and equality and seek to create a workplace that is fully inclusive. We welcome applications from all sections of the community that we operate in and from all ethnic backgrounds sexual orientation beliefs gender identities and disabilities.

If you require more information about our equal opportunities policy or wish to discuss any accessibility requirements or reasonable adjustments please contact the recruitment team and we will be happy to help.