Director, Head of IT and Change (Audit) Director, Head of IT and Change (Audit) …

à Londres, Angleterre, Royaume-Uni
CDI, Plein-temps
Dernière candidature, 04 août 20
à Londres, Angleterre, Royaume-Uni
CDI, Plein-temps
Dernière candidature, 04 août 20
We are MUFG. 360 years of heritage. A world-class set of businesses. And more than 180,000 employees in 50 markets. It’s no surprise that MUFG has grown to become one of the top five banks in the world. Our services include commercial banking, trust banking, securities, credit cards, consumer finance, asset management, and leasing. MUFG offers stability in an ever-changing market, providing services to high-profile clients worldwide. Our vision? To become the world’s most trusted financial group. You’ll help us achieve it.


EMEA Internal Audit Office (EIAO), as the Bank’s third Line of Defence, and in accordance with the Global Institute of Internal Auditors (IIA) International Standards (IIA Standards), provides independent assurance to the Board and Executive Management on the quality and effectiveness of governance, risk management and internal controls to monitor manage and mitigate key risks to achieving the Bank’s objectives.


4-5 (Team size 12)



The main purpose of the role is to provide leadership and oversight for the IT and Change Audit portfolio. This includes responsibility for overseeing the design of audit planning and corresponding audit execution for IT, Change and Integrated audits. The person will be required to develop and manage relationships, working closely with peer Heads of Audit, regional business stakeholders and key global counter-parts.

The role holder is designated as a Senior Leader within the EMEA audit team within MUFG and will be tasked with supporting the Global Head of IT Audit with the globalisation of the Audit Division. In particular, the holder will be required to play a significant role in implementing IT and Change Auditing integration plans, as well as other key strategic initiatives, both locally and globally.



  • EIA Heads of Audit are responsible for the line management of all staff allocated to their portfolio team. These teams will be made up of Portfolio Heads of Audit, Directors, Senior Audit Managers, Audit Managers, Senior Auditors and Auditors.
  • High performing teams are expected in EIA and therefore the EIA Heads of Audit must be equally adept in performance and talent management.
  • As a senior level Director, high leadership standards are expected across the wider global function and bank and the role holders will be required to act as role-models for all others.
  • EIA Heads of Audit will also be required to take lead roles in non-‘BAU’ strategic initiatives e.g. 5 P’s. Here they are expected to lead by example through positive and constructive behaviours and also to deliver results.
  • EIA Heads of Audit are expected to play a lead role in team meetings and be proactive in identifying issues in the department and managing them.


  • EIA Heads of Audit will own their sections of the risk universe and the related risk assessment. This includes producing the annual audit plan and maintaining appropriate documentary evidence that the plan is risk based and provides the appropriate coverage.
  • Are expected to utilise their subject matter expertise, knowledge of the business, continuous monitoring intelligence and wider industry knowledge to complete and sign off on the risk assessments applied to the universe.
  • Are also responsible for ensuring that their section of the universe, risk assessment and annual plan is appropriately designed in collaboration with their counterpart EIA HoA.
  • Are also expected to help the CA and EMEA DCA to oversee the approval of the consolidated audit plan using this knowledge. This applies to broader themes and risks in particular.
  • Will own their respective strategy and approach papers for entities and risks within their portfolio.
  • They are expected to improve risk coverage (within their specialist areas in particular, but not limited to this) on a global basis e.g. lead and drive thematic coverage globally.


  • The EIA Heads of Audit are accountable for all audit engagements assigned to them and ensure that all reports produced by the department are allocated either directly to them or delegated to a Portfolio Head of Audit.
  • Audit Engagements must demonstrate appropriate coverage of the key risks and meet all QA standards.
  • Issue Management must be maintained to the highest standards.
  • The role holders are responsible that the department meets the required Quality standards and are expected to lead and champion methodology implementation.


  • The EIA Head of Audit positions are senior roles within MUFG EMEA and will be representatives for the Department on a global basis.
  • Attend Bank forums when the Chief Auditor or Deputy Chief Auditor is unable to attend or when delegated within their portfolio.
  • Lead relationships with key business staff (especially Senior Execs/other MD’s) and auditees within their portfolio.
  • Meet with regulators as required.
  • Attend the Internal Audit Committees, the Bank’s & MUSE’s Risk Management Committee or any other Forum as required as an EIA Chief Auditor.

Professional Practices:

  • Take ownership of strategic developments within EIA and assist IAD globally on this agenda.
  • Work closely within the SLT to ensure that the departmental vision and objectives, outlined under the ‘5 P’s’ Programme are being achieved.




  • 2 years plus experience in a similar leadership role
  • 10 years plus in IT Audit and Change environment


Functional / Technical Competencies:


  • Excellent subject matter expertise within Corporate Banking and Global Markets IT activities, processes, products, technology and controls is required.
  • The person should have a good understanding of key technology concepts across infrastructure, application and technology risk management processes. 
  • The person should understand regulatory requirements and minimum standards as they apply to MUFG’s key activities with a particular focus on IT dependent requirements in relation to information processing, information reporting and information security.
  • Strong acumen regarding auditing methods and industry practices. A strong understanding of risk management within banking.
  • A superb communicator, the role-holder will be required to have appropriate gravitas, presence and business acumen to interact easily with Board level directors, executives and regulators.
  • The person should be able to demonstrate how they have built and maintained external networks.
  • Global perspective, demonstrating inclusiveness through an appreciation of different perspectives and diversity.
  • A passion for leading people and being driven to be part of a high performing team is a must.



  • As above


Education / Qualifications:


  • Appropriate educational qualifications e.g. CIA, CISA, ACCA are preferred. Alternatively candidates with exceptional experience may be considered if they have no relevant educational qualifications


  • Excellent communication skills
  • Results driven, with a strong sense of accountability
  • A proactive, motivated approach.
  • The ability to operate with urgency and prioritise work accordingly
  • Strong decision making skills, the ability to demonstrate sound judgement
  • A structured and logical approach to work
  • Strong problem solving skills
  • A creative and innovative approach to work
  • Excellent interpersonal skills
  • The ability to manage large workloads and tight deadlines
  • Excellent attention to detail and accuracy
  • A calm approach, with the ability to perform well in a pressurised environment
  • Strong numerical skills
  • Excellent Microsoft Office skills
  • A confident approach, with the ability to provide clear direction to your team
  • Excellent managerial/leadership experience
  • The ability to lead a high performing team
  • A strategic approach, with the ability to lead and motivate your team
  • The ability to articulate and implement the vision/strategy for the IT and Change Audit team



The role holder will be assessed in accordance with their employing entity’s performance framework and process with relevant input obtained from the dual hatting entity as relevant.


As duties and responsibilities change, the job description will be reviewed and emended in consultation with the role holder. The role holder will carry out other duties as are within the scope, spirit and purpose of the role as requested by their line manager or Department Head.



  • The role holder will have responsibilities for both MUFG Bank and MUFG Securities EMEA plc.
  • The role holder will be required to perform their duties and responsibilities on an entity neutral basis, without favour.
  • The role holder is required to follow regulatory requirements applicable to ensure each business is appropriately supported and to maintain the legal entity integrity of each of MUFG Bank and MUS.
  • Working terms are dictated by functional mandates, the terms of the Dual-Hat Arrangement Agreement in place between MUFG Bank and MUFG Securities EMEA plc and any other relevant agreements entered into between MUFG Bank and MUFG Securities EMEA plc.
  • The role holder will have responsibility for identifying and resolving where there may be a difference or conflict in needs between MUFG Bank and MUFG Securities EMEA plc, escalating to their manager where required.


MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership.


We make our recruitment decisions in a non-discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.


We are open to considering flexible working requests in line with organisational requirements