Share this Job

AVP, Internal Audit of Global Technology - Information Security Lead

Date Posted: Jan 19, 2022

Location: Cary, NC, US, 27513

Company: MetLife

AVP, Internal Audit of Global Technology - Information Security Lead

 

Job Location: Cary, North Carolina (Hybrid schedule)

 

DepartmentInternal Audit is an independent global organization that plays an important role in partnering with the business to ensure that management anticipates, recognizes, and appropriately manages risks. We devote our highly-skilled staff to those activities of the highest risk, taking into account the concerns of management and independent boards. We protect MetLife and our stakeholders through meaningful independent assurance and advice, while advocating for risk management and internal controls.​

 

The Role: The AVP, Internal Audit- Information Security Lead assists the VP of Global Technology Audit in driving audit coverage over the Information Security organization at MetLife. This role also engages in discussions regarding critical and high IT risks across the three lines of defense, and advises the line of business management and Risk Management on potential strategies to mitigate these risks. The position also supports transparency in communication and reporting on key IT risks and issues facing the organization to both Risk Management and the Audit Committee, including periodic updates on top risks and issues (e.g., Cybersecurity posture, IT compliance).

 

Key Relationships:

  • Reports to: VP, Head of Audit of Global Technology
  • Direct reports/team: 5 Direct Reports, 1 Indirect
  • Key Stakeholders: CISO and their regional employees, Global Corporate Security. Regional CIOs, SVPs, VPs, Legal, Finance, Audit, Compliance, Operations

 

Key Responsibilities:

  • Support the VP-Global Technology Audit in providing leadership and management of the Internal Audit team responsible for audit coverage of the Information Security organization, which includes cybersecurity, IT risk management, cybersecurity testing, IT third party risk assessments, identity and access management, and other IT security governance responsibilities.
  • You will be responsible for the risk assessment, audit planning, audit execution, issues management, and develop consolidated results of the Information Security organization for review and reporting to Global Technology and Operations (GTO) leadership, Internal Audit leadership, and the Audit Committee.
  • Manage relationships with the Chief Information Security Officer, Information Security organization, and other risk and compliance stakeholders throughout the enterprise.
  • Coordinate to effectively on achieving global cybersecurity coverage globally through effective networking, leadership, guidance and oversight of your or other international teams executing reviews at your direction. Communicate clearly and effectively with other regional IA leaders on articulating coverage requirements and assistance required.
  • Maintain an ongoing collaborative relationship with management and assume accountability for client engagement during audit-related work to ensure timeliness and transparency of audit-related results (avoid surprises).
  • Actively manage the Balanced scorecard metrics and ensure they are on par to meet expectations, and, if lagging, demonstrate urgency to resolve and get metrics back on track.
  • Lead teams through the entire life cycle of audit-related projects, including day-to-day supervision of staff to deliver on commitments.
  • Responsible for the quality and timely delivery of audit-related projects and issue remediation testing, including performance of overall reviews per methodology. Issue audit reports in compliance with quality standards.
  • Lead and model MetLife success principles in project execution.
  • Serve as a cybersecurity capability leader, including proposing global roadmap for audit coverage using a risk-based approach.
  • As a people manager, handle career, talent, performance and compensation discussions. Provide input to team-level annual performance preparation. Responsible for coaching and mentoring IA staff by providing project-based performance feedback to support performance development plans.

 

   Essential Business Experience and Technical Skills:

  • 12-15+ years IT audit experience, public accounting and/or IT security experience.
  • Proven track record of success as a technology audit leader, advising management on current and emerging cybersecurity and IT risks, and leading/coaching junior team members on methodology, stakeholder management, and the more technical aspects of IT audit reviews.
  • Strong competencies/body of knowledge of cybersecurity, IT risk management, identity and access management, third party risk management and IT governance, having led multiple assessments of an organization’s processes against leading security standards/practices (e.g., NIST, ISO 27001, COBIT, SOX, PCI). 
  • Able to demonstrate executive presence, and clearly and frequency communicate potential risks, audit scoping and risk assessments, and audit results succinctly and effectively to executive leadership of the organization.
  • Certified as a CISA, CISM or CISSP designation.
  • Proficient capabilities in the areas of critical thinking, root cause analysis, and written/verbal communications.
  • Prefer a Bachelor’s degree or equivalent experience required, preferably in Computer Science, Information Technology or Accounting.

 

MetLife Success Principles:

  • Experiment with Confidence – Courageously learn and test new ideas without fear of failure
  • Act with Urgency – Demonstrate speed to action with agility and determination
  • Seek Diverse Perspectives – Source ideas and feedback to expand thinking and make informed decisions
  • Seize Opportunity – Drive responsible growth and identify areas for continuous improvement
  • Champion Inclusion – Foster an environment where everyone is valued, heard, and can speak up
  • Create Alignment – Partner with others across the organization with candor and transparency
  • Take Responsibility – Be accountable and act in pursuit of the right outcomes
  • Enable Solutions – Anticipate and address obstacles while managing risk
  • Deliver What Matters – Execute meaningful priorities and follow through on commitments

 

MetLife:

MetLife, through its subsidiaries and affiliates, is one of the world’s leading financial services companies, providing insurance, annuities, employee benefits and asset management to help its individual and institutional customers navigate their changing world. Founded in 1868, MetLife has operations in more than 40 countries and holds leading market positions in the United States, Japan, Latin America, Asia, Europe and the Middle East.

 

We are one of the largest institutional investors in the U.S. with $666.7 billion of total assets under management as of June 30, 2021. We are ranked #46 on the Fortune 500 list for 2021. In 2020, we were named to the Dow Jones Sustainability Index (DJSI) for the fifth year in a row. DJSI is a global index to track the leading sustainability-driven companies. We are proud to have been named to Fortune magazine’s 2021 list of the “World’s Most Admired Companies.”      

      

MetLife is committed to building a purpose-driven and inclusive culture that energizes our people. Our employees work every day to help build a more confident future for people around the world.  Visit us at www.metlife.com to learn more about our brand, history, and values. 

 

We want to make it simple for all interested and qualified candidates to apply for employment opportunities with MetLife.  If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to accommodations@metlife.com or call our Employee Relations Department at 1-877-843-3711.

 

MetLife is a proud Equal Employment Opportunity and Affirmative Action employer dedicated to attracting, retaining, and developing a diverse and inclusive workforce. All qualified applicants will receive consideration for employment at MetLife without regards to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, age, disability, national origin, marital or domestic/civil partnership status, genetic information, citizenship status, uniformed service member or veteran status, or any other characteristic protected by law.

 

MetLife maintains a drug-free workplace.

 

 


Nearest Major Market: Raleigh