IT Audit Manager

About the Role

As the IT Audit Manager, you will lead the internal audit team in developing and executing audit strategies that align with the organisation’s risk profile and regulatory obligations. This role is pivotal in delivering independent and objective assurance to the Bank and its stakeholders, helping to identify current and emerging risks, evaluate the effectiveness of internal controls, and support the organisation in managing risk more effectively. You’ll play a key role in ensuring compliance with internal policies and external regulatory requirements, while driving continuous improvement across audit practices.

Responsibilities

You will support the Head of Audit in shaping the audit plan by maintaining a dynamic risk assessment and proposing areas of audit focus. Your responsibilities include delivering end‑to‑end internal audits, assessing the design and effectiveness of IT governance and controls, evaluating risk management activities, and ensuring compliance with key regulatory obligations. You’ll manage outsourced audit providers, prepare clear and concise audit reports backed by robust evidence, and engage stakeholders to validate findings and recommendations. Beyond audit delivery, you’ll assist in managing outstanding audit findings, ensuring gaps are addressed and updates are accurately reflected in the GRC system, and building and maintaining strong professional relationships with key stakeholders.

Qualifications

You bring a strong foundation in internal audit practices, with experience supporting annual risk assessments and contributing to the development of audit plans. You are confident applying internal audit methodologies and navigating complex discussions with stakeholders to resolve contentious points and finalise audit reports. Your technical knowledge includes a deep understanding of IT general controls, cyber security frameworks (such as COBIT, NIST, CIS, and Essential 8), and the ability to audit diverse environments including on‑premises, cloud, and outsourced platforms. You’re comfortable using tools like SQL, Tableau, Power BI, and Excel to perform data‑driven assurance testing and draw meaningful conclusions. Certifications such as CISA and other relevant credentials in cyber security or project management are desirable. Familiarity with banking products, regulatory requirements, and project assurance across both agile and waterfall methodologies is expected.

Benefits

• Flexible working arrangement
• Discounted financial products
• Salary sacrificing options
• Paid parental leave with no minimum requirements
• Purchase additional annual leave
• Discounted private health insurance plan
• Employee Assistance Program (EAP)
• Access to employee network groups
• Pride in Diversity membership

BOQ Group is committed to diversity and an inclusive workforce. Aboriginal and Torres Strait Islander People are encouraged to apply. We celebrate, value and include people of all backgrounds, gender and expressions, sexualities, cultures, bodies and abilities. When you apply, you are welcome to tell us the pronouns you use and please let us know any reasonable adjustments you may need during the interview process.

Background screening is a condition of employment for a successful applicant to ensure compliance with the Anti‑Money Laundering and Counter Terrorism Financing Act.

#J-18808-Ljbffr