Auditor - IT and Payment Systems (ESCB/IO)

Corporate Governance & Resilience
Internal Audit

General Information

Type of contract Short-term contract, which may be extended to up to 36 months subject to individual performance and organisational needs

Contract end date 31.08.2024

Who can apply? EU nationals working for international public sector organisations or EU organisations performing central banking or banking supervision tasks. Your current contract must extend at least 1 year beyond the end of the potential employment at the ECB.

Salary F/G (1) (minimum full time monthly net salary €6336 and benefits, see further information section)

Role specialisation Audit - IT and Payments

Working time Full time

Place of work Frankfurt am Main, Germany

Closing date 19.05.2022

Your team

You will be part of the Audit Missions Division in the Directorate Internal Audit. Our Directorate has around 40 staff and provides independent and objective assurance services, as well as consulting services, under the direct responsibility of the Executive Board of the European Central Bank (ECB). The Division is responsible for auditing both central banking and banking supervisory functions, in addition to the shared services functions which support them. It provides ECB business areas with advice on risk and control-related issues and also contributes to the work of the Internal Auditors Committee and its sub-structures.

In your role as Auditor, you will be part of a dynamic team of seven staff providing assurance services for IT infrastructure and projects, and for payments and securities settlement systems. The team works closely with the Directorate General Information Systems and the Directorate General Market Infrastructure and Payments.

The ECB is an inclusive employer and we strive to reflect the diversity of the population we serve. We encourage you to apply irrespective of age, disability, ethnicity, gender, gender identity, race, religious beliefs, sexual orientation or other characteristics.

Your role

As an Auditor you will:
  • provide auditing services and advice on managing risks, by performing audits and issuing independent opinions mainly on IT and control processes, IT projects and information systems, as well as recommendations in the area of information technology;
  • prepare audits, develop audit programmes and the associated audit procedures, carry out the related fieldwork and perform testing of controls in a risk-based manner, evaluate risks and assess the effectiveness of controls, and draft and present audit reports;
  • perform follow-up work on audits, assessing whether recommendations have been adequately implemented;
  • build trust and good working relationships, and collaborate closely with ECB business areas and potentially also with committees of the European System of Central Banks (ESCB);
  • examine issues critically and objectively from an informed, balanced and risk-based perspective before making recommendations or reaching conclusions.

This position offers you excellent opportunities to get an inside view of the workings of the ECB and ESCB in the domain of IT auditing, and to learn more about auditing outsourced services. You will be part of a multicultural team that strives for continuous innovation to make a positive impact on the lives of European citizens.

Qualifications, experience and skills

  • a master’s degree or equivalent in information technology or another relevant field (click here for details on degree equivalences);
  • in addition to the above, a minimum of three years of recent professional experience in information systems auditing, in the field of either IT risk management or IT security;
  • a sound knowledge of relevant IT risk, control and service management frameworks (e.g. ISO 27002, COBIT, ITIL and CIS security controls) and their implementation;
  • good understanding of the central bank and banking supervision environment, critical IT and payment systems, and risks to which these are exposed;
  • excellent analytical and presentation skills, including the ability to simplify issues, identify root causes, provide new insights and recommend risk mitigation measures;
  • a proven ability to draft complex documentation in a clear and concise manner;
  • a proven ability to communicate risks and complex issues to management in an effective manner and increase acceptance of the findings;
  • an advanced (C1) command of English and an intermediate (B1) command of at least one other official language of the EU, according to the Common European Framework of Reference for Languages.

  • experience in performing reviews of areas such as cybersecurity, outsourced IT and cloud-based services, payment systems and IT infrastructure (e.g. networks, operating systems and databases);
  • relevant professional qualifications (e.g. Certified Information Systems Auditor, Certified Internal Auditor and Certified Information Systems Security Professional).

You engage collaboratively with others. You pursue team goals and learn willingly from other people’s diverse perspectives. You signal any need for change by explaining it and proposing alternative solutions. You analyse complex information effectively and can evaluate different views to arrive at solutions. You know and anticipate stakeholder needs.

You are motivated to contribute to the ECB’s mission, to serve the citizens of the EU as a member of a public institution and to work with colleagues from all over Europe.
You are motivated to be part of our team and to develop and use your skills and competencies to achieve the aims of this position.

Further information

The contract offered will be short-term ESCB/IO, the appointment being for 24 months as of the exact starting date of the selected person, extendable to up to 36 months.

For additional information on this specific vacancy, you can speak to the Team Lead, Frank van Hoek, on +49 (0)69 1344 8528 between 15:00 and 16:00 on Thursday, 5 May.

Application and selection process

The recruitment process for this position will be conducted remotely. It will include a written exercise and an interview.

If you are not selected for this position but are still considered suitable, you will be placed on a reserve list (see step 4 of how we hire), from which you might be considered for similar positions within the ECB.

Find out how to apply for a position at the European Central Bank. Read more about joining us.