Job Summary

The incumbent will support audits covering the Investment Banking and Support Functions Audit as a member of the Group Internal Audit function. The role provides independent assurance and advisory services on the effectiveness of controls across the Domestic divisions, focusing on investment banking, treasury, risk and support functions audits. It also supports the strategic implementation and integration of advanced data analytics tools and continuous auditing techniques across the audit function to enhance efficiency and real-time risk monitoring. This role requires full compliance with the GIAD Group Audit Manual, Global Internal Audit standards and all relevant local regulations. As a member of the Group Internal Audit function, this role ensures business risks are effectively integrated into the overall audit strategy and contributes to strengthening the organization's resilience against existing and emerging risks.

Main Responsibilities

A. Shareholder & Financial:

- Contribute to the development and execution of the risk-based annual plan for the Investment Banking and Support Functions that aligns with the Group Internal Audit strategy and aims to protect the organisation from financial penalties, reputational damage, and operational losses arising from non-compliance or ineffective controls.

- Assist in identifying compliance and operational risks that could impact the Group's financial performance, brand reputation, and shareholder value, providing actionable recommendations for mitigation.

- Assess the efficiency and effectiveness of Investment Banking and Support Functions processes and controls to enhance the bank’s governance, risk management and control processes.

- Support the implementation of KPIs and best practices for Investment Banking and Support Functions Audit function.

- Act within the limits of the powers delegated to the incumbent.

B. Customer (Internal & External):

- Build and maintain strong, independent, and collaborative relationships with relevant business and support function staff and stakeholders across the organisation.

- Communicate audit findings, risk assessments, and recommendations to the Audit Team Leader.

- Participate in advisory services to Investment Banking and Support Functions as directed by the Team Leader on matters of internal control, consumer protection, financial crime prevention, and regulatory adherence.

- Coordinate effectively with external assurance providers and consultants as directed.

C. Internal (Processes, Products, Regulatory):

- Act as a team member on audit engagements for the Investment Banking and Support Functions audit engagements; responsible for the delivery of the assigned audit work and timely identification and escalation of potential issues or conflicts to meet the required quality and timelines. All audit activities must be conducted in full compliance with the GIAD Audit Manual, the Internal Audit Global Standards and relevant local regulations.

- Engagements: support the Team Leader in executing the audit engagements and ensuring own work is performed efficiently and effectively and meets GIAD quality standards.

- Planning phase: support the Team Leader in preparing and conducting detailed risk assessments and interviews with auditees to define and document the precise audit scope and work program in the required deliverables (APM, RCM and ToR) addressing the most significant risks.

- Fieldwork phase: conduct testing of assigned scope areas and support the Team Leader to prepare progress updates and interim meetings with the auditees.

- Reporting phase: draft clear and concise audit issues and recommendations supported by solid evidence, present audit findings to the auditees to obtain management actions.

- Issue Follow up Phase: Perform the issue closure validation in accordance with the latest audit methodology and timely escalate potential delays to management, as needed.

- Timely conduct audit file closure procedures in accordance with the latest audit methodology and standards.

- Collaborate with peers to achieve full coverage of domestic subsidiaries, support, control and risk functions in the organisation.

- Support the delivery of department audits, assessing the adequacy and effectiveness of internal controls, risk management processes, and governance frameworks against industry best practices and regulatory requirements.

- Identify and report control weaknesses, process inefficiencies, and non-compliance issues specific to the related areas, providing actionable and value-added recommendations.

- Ensure the consistent application of internal audit methodologies, tools, and best practices across all audit engagements.

- Support the strategic integration of data analytics (tools) into the audit practice to enhance risk identification, efficiency, and depth of analysis. Drive the implementation and maturation of continuous auditing capabilities to provide real-time assurance and insights.

D. Learning & Knowledge:

- Stay abreast of global audit trends and new technologies to proactively identify emerging risks and adapt audit strategies. This includes actively fostering practical skills in data analytics and continuous auditing techniques within the audit division.

- Identify areas for professional development of self and undertake development activities.

- Remain current with all developments in professional field.

E. Legal, Regulatory, and Risk Framework Responsibilities:

- Comply with all applicable legal, regulatory and internal compliance requirements including, but not limited to, Group Compliance Policies and Procedures (AML & CTF, Sanctions Policy, Data Protection Policy, Fraud Control Policy, Whistle Blowing Policy, Conflict of Interest and Insider Dealing Policy and Code of Ethics and Conduct).

- Understand and effectively perform your role under the Three Lines of Defence principle to identify measure, monitor, manage and report risks.

- Ensure systematic good outcomes for clients in accordance with Conduct Risk policy.

- Support the framework of RCSA, KRI, Incident reporting and remediation, as appropriate, in accordance with the Operational Risk Management requirements.

- Maintain appropriate knowledge to ensure full qualification to undertake the role.

- Complete all mandatory training provided by the Bank, attain, and maintain the required levels of competence.

- Attend mandatory (internal and external) seminars as instructed by the Bank.

- Ensure the Investment Banking and Support Functions Audit function operates in full compliance with all applicable regulations, data privacy laws (e.g., GDPR), governance frameworks, and industry standards relevant to the organisation's operations. This includes strict adherence to the GIAD Group Audit Manual, the Internal Audit Global Standards, and local regulatory requirements.

- Ensure audit engagements incorporate relevant regulatory compliance and address inherent business-related risks.

- Contribute to the strengthening of the organisation's overall internal control environment, risk management and compliance framework.

F. Other:

- Ensure high standards of data protection and confidentiality to safeguard commercially sensitive information.

- Maintain utmost confidentiality concerning customer and internal bank information obtained during the course of business and provide such information on a need-to-know basis only to Senior Management of QNB, Audit and Compliance functions, and relevant Regulators.

- Maintain high professional standards to uphold QNB's reputation and to strengthen its market leadership position.

- All other ad hoc duties/activities related to QNB that management might request from time to time.

Education and Experience Requirements

- University graduate preferably with a Major in Banking, Finance, Accounting, Economics, Business Administration or Information Technology (related field of study). Master’s is preferred.

- At least 2 years of progressive experience in internal audit, compliance, or a related field delivering audits preferably within a highly rated international bank.

- Certifications: Certified Internal Auditor (CIA) is preferred. Additional international certifications or country specific qualifications (e.g. CPA/ACCA/CFA/CISA/CFSA) are highly desirable.

- Technical Skills: Solid understanding of Internal Audit Global standards, audit methodologies and global best practices, governance principles, and controls frameworks; experience in auditing banking environments, performing risk assessments and writing audit reports. Knowledge of banking regulations; familiarity with core banking systems, various ERPs, and audit software.

- Soft Skills: Good analytical, critical thinking, and problem-solving abilities; strong verbal and written communication skills, with the ability to translate complex issues into understandable business risks for diverse audiences; coaching and team-building skills; high level of integrity, objectivity, and professional scepticism; excellent interpersonal and influencing skills, with the ability to effectively challenge business leaders; demonstrated ability to work independently and collaboratively as part of the Internal Audit Management Team.

- Excellent oral and written communication skills (including report writing) in English and Arabic (preferred).

- Good interpersonal and presentation skills.

- Understanding of the relevant laws, regulations, and practices.

- Ability to make decisions and follow through with initiatives.

- Personal integrity and self-management.

- Planning, organising, and analytical ability.

- Results oriented.

- Strong analytical skills and the ability to communicate both verbally and in writing with all levels of management.