| As a key third line of defense role, this position will prepare and execute specific risk-based IT audit programs, testing procedures, and related tasks to provide assurance on the adequacy of IT governance, risk management, control and compliance processes in a highly regulated industry. This position will work directly with managers of various business units to develop recommendations and action plans to manage risk in response to internal audit issues and then perform follow-up on the status of action plans. This role has the opportunity to work hybrid. During the interview process, our Talent Acquisition Team will share additional details with you. Responsibilities: -
Execute and/or lead audit teams in the performance of specific IT audit programs, procedures and tasks to provide assurance on adequacy of IT governance, risk management, control and compliance processes of the Bank. -
Identify risks; develop recommendations to mitigate risks; prepare organized, accurate and competent work papers; and communicate audit results through written draft reports and oral presentations to management. -
Evaluate the reliability and integrity of information and the means used to identify, measure, classify and report such information. -
Monitor and evaluate the effectiveness of the organization’s risk management processes. -
Participate in reviews of internal controls and security of systems under development, as well as major IT projects and initiatives, using knowledge of the current IT environment and industry trends to identify and advise management on potential issues and risks. -
Assist in the development and completion of a comprehensive risk-based IT internal audit plan. -
Maintain a working knowledge of all applicable banking rules and regulations, internal audit standards, current and emerging IT risks and controls. Qualifications: Education Requirements -
Bachelor’s degree in Accounting, Finance, Computer Science or related field required. -
Master’s degree in Accounting, Finance or Management Information Systems (MIS) preferred. Minimum Experience Licenses and Certifications -
Holds in good standing or is actively pursuing professional certification(s), including Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA), or other certification related to information technology security, audit and control, such as Certified Information System Security Specialist (CISSP). Knowledge/ Skills/ Abilities -
Demonstrated IT internal audit expertise through the application of IIA standards, leading practice frameworks, and business acumen. -
Clear understanding of risks and internal controls and the ability to evaluate and determine the adequacy and effectiveness of controls. -
Be a confident, proactive self-starter who can work autonomously with strong attention to detail. -
Strong project management skills with the ability to maintain multiple work efforts simultaneously and adapt quickly to changing needs. -
Proven ability to complete assigned deliverables with attention to detail autonomously or as part of a larger team. -
Ability to learn and quickly assimilate new audit tools and technologies. -
Demonstrated knowledge in the following areas: IT Governance, Data Privacy, Business Continuity Planning, Disaster Recovery, IT general controls, IT application controls, Project Management, and Cybersecurity -
Clear understanding of complex IT systems, processes, risks, internal controls, and the ability to evaluate and determine the adequacy and effectiveness -
Strong verbal and written communication skills, with the ability to communicate effectively with all levels of management and staff -
Ability to look broadly across a population to develop connections, themes, root cause and potential solutions. -
Experience with audit analytics tools and visualization tools preferred. |
