Senior IT Auditor

The role:

As a Senior within the IT Internal Audit function, you will be supporting the Third Line of Defense in evaluating technology controls that are established to mitigate key risks.

What you’ll do:

● Assist the Internal Audit team in accomplishing audit department objectives in a team environment.
● Collaborate with professionals from various business functions to help plan the audit scope, identify and analyze technology risks, develop work program timelines, conduct interviews, observe the operation of technology processes and controls, document and analyze procedures and controls, perform audit tests, document audit workpapers, develop audit recommendations, review identified issues with appropriate management, and prepare audit report findings.
● Serve as a fieldwork leader by directing the daily progress of fieldwork, informing supervisors of the audit status, and potentially supervising staff at lower levels depending on the nature of the assignment.
● Assist in developing formal written reports to communicate audit results to management and other stakeholders.
● Continuously seek opportunities for audit process improvement.
● Use knowledge of the current technology environment and financial services industry technology trends to proactively identify potential risk, issues, and findings; and communicate this information to the audit team.
● Demonstrate and apply strong project management skills to work on multiple priorities/projects simultaneously while meeting deadlines.
● Consider the use of data analytics and tools to efficiently execute audit procedures.
● Continue to develop and expand knowledge of the audit profession, financial and technology industry, and products through self-study, research, and continuing education efforts.
● Execute special assignments and other duties as assigned.
● Some travel may be required.

What you’ll need:

● Bachelor's degree or equivalent in business, accounting, finance, information systems, cybersecurity, computer science or related fields.
● Minimum of 3-6 years of experience working as an IT auditor (external or internal audit), IT risk advisor, or related experience working in a financial institution with knowledge of general and technology internal controls, risk management, and regulatory compliance.
● Professional certification(s) or related licensure preferred (CIA, CISA, CPA, CISSP, or equivalent).
● Understanding of internal control concepts, internal auditing standards, risk assessment practices, COSO three lines of defense, etc.
● Understanding of IT, engineering processes, architecture, resiliency, automation, data, and cloud computing.
● Experience with audit engagement planning, executing, and reporting is a plus.
● Highly motivated self-starter who works well individually and in teams while meeting deadlines.
● Inquisitive, curious, and proactive in identifying underlying technology risks.
● Excellent project management and organization skills; ability to navigate through ambiguity, manage and coordinate multiple project assignments simultaneously, accept ownership and accountability for projects, and deliver on commitments.
● Strong written, verbal communication, and presentation skills.
● Ability to develop audit workpapers, and write meaningful reports and presentations, with the ability to articulate risk and business impact.
● Experience improving the effectiveness and efficiency of audit activities through innovation.