Technology Audit Manager

About the Bank
We are a growing regional digital bank group and are revolutionizing financial banking services across Southeast Asia. Our mission is to unlock big dreams and drive financial inclusion throughout the region. As a regional digital bank, we have the right foundation—data, technology, and trust—because we are Built With Heart. We believe that real impact starts with real people. If you're ready to Own The Mission and help us shape the future of Digital banking, we invite you to join us.

About the team

Internal Audit is an independent function (3rd Line of Defence) within GXS Bank that provides objective assurance and advisory services to senior management.  We use a systematic, disciplined and risk-based approach to evaluate and assess risks, processes, and internal controls, while aligning them with the Bank’s overall digital strategy.  Our team covers multiple business and technology functions across the Bank’s ecosystem.

What you’ll do

Reporting to the Head of Technology Audit, you will be a key member of the Technology Audit team.  As a Technology Auditor, you are primarily responsible for executing audits and risk advisory activities pertaining to Technology and Engineering (Cloud Infrastructure & Applications), Technology Risk Management, Cybersecurity, and Data Governance.

We seek a candidate who brings hands-on experience in AI-driven data analytics and automation to support the Internal Audit team within a fast-paced environment.  You will keep abreast of MAS regulations on IT-related guidelines and cyber hygiene requirements.

The day-to-day activities:

• Plan and execute risk-based audit reviews and fieldwork, including work paper documentation, drafting audit findings, and participating in issue discussions with stakeholders.

• Ensure effective and timely execution of audit projects in accordance with audit methodology and timelines. 

• Maintain well-documented audit work papers including supporting evidence in the GRC system.

• Proactively apply data analytics capabilities to enhance the effectiveness of Internal Audit.

• Build and maintain healthy relationships with management and stakeholders, acting as a trusted risk advisor.

• Support ad-hoc projects, special thematic reviews, or independent investigations as required. 

What you’ll need

• Bachelor's degree in Computer Science, Information Systems, or a related field from a globally recognized university.

• Minimum 8 years of experience in Technology Audit or Cyber & Security Risk Management.

• Professional certifications (e.g., CISA, CISSP, AAIA, or Cloud Security certifications) are highly preferred.

• Strong understanding of MAS Notices and Technology Risk Management (TRM) Guidelines.

• Hands-on experience with AI-driven data analytics and programming is a significant advantage.

• Familiarity with emerging technologies such as DevSecOps, Cloud, APIs, and service-oriented architectures.

• A collaborative team player with the ability to work independently.

• The courage to challenge risk-decisions from a 3rd Line of Defence perspective.

• Excellent communication, presentation, and report-writing skills.

• Based in Singapore, with the ability to travel for work if required.