Responsibilities
As an ED/SVP, Technology Audit - Data, AI and Applications, you will be responsible for:
- Strategic Audit Leadership:
- Develop and champion a strategic vision for technology audit, specifically for Data, AI, and Applications, aligning with the bank's overall business strategy and risk appetite.
- Create and implement a comprehensive roadmap for achieving this vision, including key initiatives, resource allocation, and performance metrics.
- Lead the development of comprehensive audit plans considering the criticality of applications, data integrity, AI models, regulatory requirements, and business objectives.
- Proactively identify and assess emerging data, AI, and application-related risks, including those stemming from technological advancements, regulatory changes, and evolving ethical considerations. Develop and implement preventative strategies to mitigate these risks.
- Audit Execution and Oversight:
- Conduct and oversee comprehensive audits of IT applications, data management practices, and AI models. This includes evaluating system-related controls supporting IT infrastructure and applications (e.g., services-oriented architectures, virtualized environments, software development).
- Design and implement sophisticated audit testing to evaluate system-related controls, data governance frameworks, and AI model effectiveness and fairness.
- Analyze system logs, audit trails, technical documentation, and data pipelines to identify potential risks, vulnerabilities, or control weaknesses related to data, AI, and applications.
- Define and execute advanced audit tests using data analytic tools and techniques to assess the integrity, security, and performance of data, AI systems, and applications.
- Ensure clear, accurate, and organized audit documentation of the audit processes and findings, providing actionable insights and recommendations.
- Governance and Regulatory Compliance:
- Design and oversee the implementation of a comprehensive data and AI governance framework from an audit perspective, establishing clear roles, responsibilities, and accountabilities. This includes assessing the creation and enforcement of policies, standards, and procedures.
- Maintain a deep understanding of evolving data privacy regulations (e.g., GDPR, CCPA) and AI-related regulations globally, incorporating these into audit methodologies.
- Engage with industry bodies, regulatory agencies, and external experts to stay ahead of emerging trends and best practices in data, AI, and application security.
- Team Leadership and Development:
- Provide strong leadership and direction to the Technology Audit team, ensuring effective challenge, oversight, and monitoring of data, AI, and application activities across the bank.
- Coach, mentor, and guide junior and senior staff on all audit engagements, fostering a culture of continuous learning and professional development.
- Participate actively in department-related initiatives, contributing to the overall effectiveness and innovation of Group Audit.
- Stakeholder Management and Thought Leadership:
- Effectively communicate complex risk and audit findings to diverse audiences, including senior executives, the Board, and regulatory bodies.
- Serve as a recognized thought leader internally and externally on technology audit, particularly in the areas of Data and AI risk management, representing the bank at industry events and conferences.
- Work effectively with all levels of management and staff, leveraging influence to drive adoption of best practices and risk mitigation strategies across the organization.
Requirements
- Experience & Professional Background:
- Minimally 15 years of progressive experience in IT auditing, application support and development, application security, or risk management, with at least 5 years dedicated to Second Line of Defence or Audit within a large financial institution.
- Proven track record of successfully leading complex technology audit functions focusing on Data, AI, and Applications.
- Executive-level experience, preferably as a senior leader within an Audit or Risk function of a large, complex organization.
- Demonstrated experience in shaping and influencing strategic audit and risk direction is essential.
- Technical Expertise:
- Expertise in data risk, data governance, AI ethics, and model risk management, with a deep understanding of data and AI technologies.
- Familiarity with machine learning, deep learning, natural language processing, and model development lifecycles.
- Strong understanding of transactional application solutioning, development, production support, and troubleshooting.
- Proficiency in cloud computing technology, Docker/containerisation technology, and API technology.
- Strong understanding of processes essential in supporting continuous delivery, integration, automated testing, and performance monitoring.
- Education & Certifications:
- A degree in a relevant field (e.g., Computer Science, Engineering, Mathematics, Statistics, Finance) is required.
- Current professional certifications such as CISA, CISSP, CRISC, CISM, or FRM are highly desirable.
- Skills & Competencies:
- Exceptional communication, presentation, and influencing skills with demonstrated ability to communicate complex information effectively to diverse audiences.
- Strong project management and organizational skills, with the ability to navigate through ambiguity and manage multiple project assignments and teams simultaneously in a fast-paced, deadline-driven environment.
- Ability to accept ownership and accountability of processes and deliver on commitments.
- Ability and willingness to take initiative to address problems and drive continuous process improvements.
- Performance-oriented with a strong focus on delivering high-quality audit outcomes.
Location:
DBS Asia Central
Job:
Audit
Schedule:
Regular
Employee Status:
Full time
