Conduct regular audits of IT application related areas assessing adherence to firm and regulatory requirements and assessing design, operating effectiveness and sustainability of associated controls.
Create audit issues and reports that clearly articulate results and conclusions for review with senior audit management and auditees.
Challenge the ongoing coverage of IT application work and present ideas for improvement.
Facilitate risk issue tracking to promote timely remediation.
Perform issue assurance work for audit, regulatory, and self-identified to confirm closure or recommend additional actions.
Work collaboratively with colleagues and auditees to identify risk concerns and agree reasonable solutions.
Forge strong partnerships with colleagues in other IT application and control functions including legal, compliance, data security and risk management to promote front-to-back collaboration across risk assessment and findings remediation.
Partner with audit colleagues in other business verticals and/or geographies to share best practices and drive greater consistency. Seek out opportunities to engage with stakeholders outside of formal audit periods to drive deeper relationships.
Oversee quarterly and annual continuous monitoring / risk assessment process to identify technology trends and emerging risks, and when necessary, propose updates to the audit plan to reflect them.
Assist with special projects related to business process improvements or departmental strategic initiatives.
Conduct regular Continuous Monitoring activities and auditable entity updates.
Lead and execute strategic team initiatives.
Proactively foster relationships with technology management.
Advise and train IT Application team on new technological concepts, IT audit techniques, and overall development of the team.

Requirements

Minimum of 10 years of IT Application/Infrastructure/Cybersecurity audit experience in the banking and/or technology industry.
Knowledge of IT application related risks and controls (i.e. General Controls, Interface Controls, Data Management and Security, etc…)
Knowledge of industry relevant standards (i.e. NIST, CRI, etc...) and related regulatory expectations (i.e. NYS DFS 500, FFIEC, etc…)
Knowledge of audit techniques, risk and internal controls assessment, and workpaper standards.
Strong strategic thinking skills including the ability to identify and assess technology related risks.
Ability to act as trusted advisor to IT application management using discretion and sound judgment in identifying, analyzing, and reporting problems.
Excellent communication (both verbal and written), presentation and professional skills including the ability to interact effectively at all levels within the organization.
Bachelor’s Degree in Information Technology, Finance, or related field. Advanced degree a plus.

Benefits

Competitive portfolio of benefits

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

IT application auditinfrastructure auditcybersecurity auditrisk assessmentinternal controls assessmentaudit techniquesworkpaper standardsdata managementsecurity controlscontinuous monitoring

Soft Skills

strategic thinkingtrusted advisordiscretionsound judgmentcommunication skillspresentation skillsprofessional skillsrelationship buildingcollaborationproblem analysis