Who we are looking for We are looking for an IT Auditor for Infrastructure and Application Professional, who is interested for a challenging and fulfilling opportunity to grow along with a global industry. You will identify and help to mitigate complex application and infrastructure risks. In this role you will be independent and trusted advisor, advising management on risks related to strategic initiatives, process and systemic changes. You will be a subject matter and controls expert, providing knowledge and experience in key risk areas, and identifying inefficiencies in risk management and control design. You will be a problem solving partner, looking ahead to help management envision future risks and opportunities. As an IT Auditor you will be part of Corporate Audit team, and you will be based in Krakow, Poland.
This role can be performed in a hybrid model, where you can balance work from home and office to match your needs and role requirements.
Why this role is important to us The team you will be joining plays an important role in the overall success of the organization. Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. To make that happen we need teams like yours to help navigate employees and the organization as a whole. In your role you will strive for cutting-edge solutions, that are straightforward and scalable. You will help us build resilience and execute day to day deliverables at our best. Join us if making your mark in the financial services industry from day one is a challenge you are up for.
What you will be responsible for As IT Auditor, Officer, Infrastructure and Application Professional you will:
Work as part of an international team with global stakeholders in new and changing situations where there may not always be a readily apparent solution.
Perform the planning, assessment, testing and issue validation phases of audits covering IT governance, systems infrastructure, information security, application controls, and operational activities.
Perform independent and objective assessments of risks and controls to improve risk management practices.
Assess systems and supporting controls for compliance with laws, regulations, company policies and meet business needs.
Recommend control improvements to mitigate key risks.
Influence change and provide insights on business initiatives, including system implementations.
Prepare audit work papers to ensure compliance with the division's risk-based audit methodology.
Have exposure to emerging technologies including crypto / blockchain
Use your excellent writing skills to succinctly communicate complicated technical issues in business terms
What we value These skills will help you succeed in this role
Ability to manage complexity, effectively prioritize multiple tasks and work independently in non-routine situations
Strong analytical, interpersonal, organizational, research, and communication (verbal and written) skills
Professional curiosity, and willingness to learn new technologies and processes.
Good understanding of the role of first, second and third lines of defense
Fluency in English - written and spoken
Education & Preferred Qualifications
University degree in information systems, computer science, accounting or related field; advanced degree in information technology, cyber security or systems engineering preferred.
3+ years of experience related to IT Audit
Holds or interested in obtaining industry recognized certifications (e.g. CISA, CISSP, CISM, Cloud+, etc.).
Experience in Resiliency and Business Continuity Management.
Experience in implementing, testing and/or auditing technology-related areas such as:
Enterprise security controls frameworks
Enterprise application development models (i.e., waterfall, rapid prototyping, agile, etc.,)
Perimeter/Internal Security Technologies (Firewalls, Intrusion Detection and Prevention Systems)
Data Loss Prevention technologies and support processes
Network Segmentation and Separation Solutions
Identity and Access Management/Privileged Access Management/Adaptive Authentication Solutions
Platform and Configuration Hardening Practices
IT incident and problem management
Threat Intelligence and Insider Threat Detection
Vulnerability Scanning and Penetration Testing
Security Incident and Event Management (SIEM) Technologies
Cyber Incident and response
Cloud Security
Financial services operational processes and technology
Automated business process controls
Additional requirements
Ability and willingness to travel up to 20%
Are you the right candidate? Yes! We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them. Although each vacancy details what we are looking for, we don't necessarily need you to fulfil all of them when applying. If you like change and innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit.
About State Street
What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we're making our mark on the financial services industry. For more than two centuries, we've been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.
Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks. You'll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.
Inclusion, Diversity and Social Responsibility. We truly believe our employees' diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you. State Street is an equal opportunity and affirmative action employer.
