Team / Role Overview

The Managing Director, Chief Auditor Technology & Business Enablement International and Wealth International Technology is a senior level management position, reporting to the Chief Auditor Technology & Business Enablement and Artificial Intelligence, responsible for providing independent assurance and ensuring risks are identified, controls are effective, and governance aligns with regulatory, ethical and strategic objectives.  

This role will lead and develop a team with accountability for directing audit activities and assessments of the risk and control environment for Technology & Business Enablement International and Wealth International Technology, applying in-depth disciplinary knowledge through value-added perspectives that are in accordance with IA standards, Citi policies, and regulations. The role will need to collaborate closely with the Chief Auditor for US Wealth, US Consumer Cards (USCC) & Functions, who is responsible for consolidating the global assurance plan and opinion for Wealth Technology. The role will also need to collaborate closely with the global leadership of IA International, both for plan creation and delivery, as well as providing oversight, support and engagement of the technology resources embedded within the IA International team. The role will also have responsibility for leading the processes for continuous quality improvement across Technology & Business Enablement IA team, in close collaboration with the QA team.

Critical thinking and executive presentation skills will be important requirements of the role as themes related to risks and issues across the organization will be identified and presented to key stakeholders, such as senior management, the Audit Committee, regulators and external audit functions.  The incumbent requires a wide-ranging, yet detailed knowledge of technology, cyber, data and resilience risks as well as an up-to-date knowledge of emerging technology areas such as artificial intelligence, as well as a strong understanding of the fundamental risks associated with a large bank. 

The role will entail considerable co-ordination and development of resources, including partnership with business and function audit teams to meet the requirements, and will therefore also require strong people management, engagement and communication skills.

As a member of the Technology & Business Enablement and Artificial Intelligence leadership team, the incumbent will also play a key role in supporting the broader team’s mandate.  In addition, as a member of the broader senior leadership of the IA function, the individual is also responsible for contributing to the overall management and development of Citi’s audit approach, to position Citi IA as the leading IA function in the financial services industry.

Citi IA is a dynamic global function of over 2,500 professionals located across more than 60 countries, covering Citi's global businesses and service to clients and customers through its network in 98 countries. Through a culture of continuous improvement, Citi IA is focused on maintaining its position as a best-in-class IA function and is committed to investing in people, learning and development, innovation, and methodology programs. The Internal Audit mission is to provide independent, objective, reliable, valued and timely assurance to the Board, senior management and regulators of Citigroup and Citibank (and its subsidiaries), over the effectiveness of culture, ethical conduct, governance, risk management, and controls that mitigate current and evolving risks, and enhance the control environment.  IA is a change agent within Citi to enhance the control culture of Citigroup worldwide and therefore support senior management decision making around the globe. Citi provides consumers, corporations, governments, and institutions with a broad range of financial services and products. Citi strives to create the best outcomes for clients and customers with financial ingenuity that leads to solutions that are simple, creative, and responsive.

Responsibilities

Assurance Risk Assessment, Strategy & Coverage: 

• Timely development, risk assessment, and periodic refresh of the audit plan for the scope of the role’s area of responsibilities.
• Responsible for the coordination and delivery of high-quality, value-add multiple concurrent risk-based audits, on time and to specification, ensuring that the delivery of audit reports are complete, insightful, timely, error-free and concise. 
• Engagement with senior stakeholders upon receipt of supervisory letters/other regulatory communications, ensuring adequacy of responses and commitments provided to regulators and appropriateness of action plans to address the substance of the issue raised.
• Timely delivery of high-quality and comprehensive regulatory and internal audit issue validation; and where determined appropriate, issue validation on other remediation actions.
• Support and endorse the IA Quality Assurance (QA) team to address and resolve issues found by QA, improving audit processes and coverage.
• Ensure that IA activity is sufficient and relevant to delivering timely assurance, considering emerging and established risks; industry best practices and external frameworks; legal entity and country-level regulatory requirements and an end-to-end view of the risks and controls that cross business functions.
• Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of others and create accountability with those who fail to maintain these standards.
• In collaboration with the IA International team, ensure that country-specific technology, cyber and resilience regulatory requirements are understood and maintained, and used as part of the process to risk assess the enterprise and drive appropriate audit plan creation.
• In collaboration with the Chief Auditor for US Wealth, USCC & Functions, support the integrated risk assessment, audit plan creation and opinion for the Global Wealth business.
• Working in close collaboration with the QA team, lead the processes across Technology & Business Enablement to assess the quality outcomes of assurance work, identifying areas for improvement and leading the resulting initiatives, providing regular updates on the strategy and status at T&BE and AI leadership team meetings.

Regulatory & Stakeholder Engagement:

• Develop and maintain proactive, constructive, solutions-driven relationships as the independent auditor with senior leadership and teams across IA, business areas and functions across Citi to provide credible challenge and positively influence Citi’s culture, ethical conduct, governance risk management, and control frameworks. Leverage the feedback achieved from this to continually improve the definition and risk assessment of the audit universe as well as identify new and optimized ways of auditing the environment to maximize the insight achieved. 
• Provide independent reporting on Technology risks, findings and recommendations to senior management and the Audit Committee, presenting and gaining buy-in to forward looking risk-based audit plans, and reporting on key IA activities including key risk issues and their management and/or resolution.
• Build and sustain an open, constructive and co-operative relationship with global and local regulators resulting in two-way dialogue, trust in the IA function and general reliance being placed on the assurance delivered; act as a key point of contact for regulators on internal audit matters; appropriately assessing risk when business decisions are made and understanding the significant risks specific to this role’s area of responsibilities in relation to global regulations. 
• Ensure timely and accurate provisions of IA regulatory submissions and oversee IA activities and responses to regulatory exams as required.
• Coordinate with external parties to support Citi’s responses for regulatory compliance, validation of regulatory issues and ensuring timelines are met and regulatory intent is addressed. 

Leadership & Collaboration: 

• Attract, motivate and develop a highly effective, diverse, talented and trusted team.
• Work with other IA Chief Auditors to maximize the efficiency and effectiveness of IA resources, taking into consideration the experience and location of the team, as well as leveraging different audit approaches and best practice.
• Identify and develop talent, providing long-term career opportunities both within IA and across other parts of Citi.

• Provide strategic counsel to senior business and risk leaders on AI/control, governance and emerging risks.

• Develop approaches to promote knowledge sharing and management of best practices across IA, Citibank, and Citigroup
• Providing oversight, support and engagement of the technology resources embedded within the IA International team, ensuring that there is a high level of transparency and 2-way information flow.

Experience

• Candidates should have a minimum of 15 years of diversified management experience in audit or a related role with a focus on cyber, technology resilience and data.
• Demonstrable technology experience, including that related to the design and operation of risk and controls frameworks.
• Demonstrable product knowledge of Markets, Services, Payments Infrastructures, Corporate and Consumer Banking and Wealth Management, including the provision of technology services within these areas
• International experience is preferred within highly respected, diversified and complex institutions.
• Proven experience working with regulators and managing regulatory audits or inspections.

Skills

Technical Skills:

• A strong level of technical knowledge related to cyber security, resilience, current and emerging technologies and systems development best practices, covering both large-scale change programs and ongoing operations (e.g. Private & Public Cloud infrastructures, Distributed Ledger technology, AI technology, application and infrastructure architectures)
• Strong knowledge of IT governance and control frameworks (e.g. COBIT, NIST, SANS)
• Good understanding of AI and machine learning concepts, algorithms and techniques.
• Familiarity with data governance principles, data quality management and data privacy practices.

Auditing Skills:

• Strong understanding of internal audit standards (e.g. IIA Standards) and risk management frameworks (e.g. COSO).
• Experience in planning and executing audits including risk assessment, control evaluation and report writing.
• Ability to identify and assess complex risks and develop effective audit procedures.
• Proficient in Risk and Control analysis and audit concepts, governance, the design and operation of risk management and control frameworks in leading international organizations.
• An understanding of how risks and control deficiencies need to be prioritized and remediated across the first and second lines of defense

Leadership Skills:

• Excellent communication skills – both written and verbal; being able to digest vast amounts of information and be able to succinctly present messages and technical concepts to non-technical audiences.
• Strong executive presence and interpersonal skills for interfacing with all levels within the organization and beyond, including senior management and regulators.  Effective influencing skills, a proactive and ‘no surprises’ approach in communicating issues and requests.
• Strong critical thinking and strategic problem-solving skills, with independence of thought.
• Strong stakeholder management skills, promoting a culture of collaboration and teamwork across organizational boundaries; willing to break down functional silos to optimize business results and to facilitate the overall growth of the franchise. 
• Self-motivated and goal orientated.  Sense of urgency in implementing programs and evaluating priorities; decisive, action-orientated and practical.  Willing to challenge and question the status quo, making recommendations for options and best solutions. 
• An effective leader, being able to manage auditors with different experience and background, building a culture of trust and support and accountability, with a track record of identifying and developing world class talent.

Education & Qualifications

• Bachelor’s degree/University degree in computer science, data science, finance, accounting, science or a related field, or equivalent experience
• Master’s degree preferred
• Related certifications such as Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified in Risk and Information Systems (CRISC) or similar.

------------------------------------------------------

Job Family Group:

Internal Audit

------------------------------------------------------

Job Family:

Audit

------------------------------------------------------

Time Type:

Full time

------------------------------------------------------

Most Relevant Skills

Control Monitoring, Data Analysis, Industry Knowledge, Issue Management, Laws and Regulations, Professional Standards, Risk Management, Root Cause Analysis.

------------------------------------------------------

Other Relevant Skills

For complementary skills, please see above and/or contact the recruiter.

------------------------------------------------------

Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law.

 

If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View Citi’s EEO Policy Statement and the Know Your Rights poster.