Vanguard

IT Control Tester

Vanguard

full-time

Posted on:

Location Type: Hybrid

Location: Dublin • 🇮🇪 Ireland

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

AWSAzureCloudCyber Security

About the role

  • Develop and maintain the annual IT control testing plan
  • Define the scope, objectives, timing, and methodology for each control test based on risk assessments and regulatory requirements
  • Execute detailed walkthroughs and testing of key IT general controls (ITGCs) and application controls identified in the Risk and Control Self-Assessment (RCSA) to validate their design and operating effectiveness
  • Drive the implementation and continuous improvement of the IT Control Testing Framework across our European entities, ensuring alignment with global standards and local regulatory nuances
  • Proactively monitor the regulatory landscape and translate requirements from current and emerging technology regulations into tangible, testable controls
  • Partner with technology owners, developers, and project teams to provide proactive advice on control design and implementation for new systems, applications, and infrastructure changes
  • Clearly document test results, manage findings in the Governance, Risk, and Compliance (GRC) platform, and collaborate with stakeholders to develop robust and timely remediation plans
  • Prepare clear, concise reports on the IT control posture for senior management and risk committees
  • Liaise effectively with First Line of Defence (business and IT), Global IT Controls testing team, and Third Line (Internal Audit) to ensure a coordinated and comprehensive approach to assurance activities

Requirements

  • Proven experience in IT Audit, IT Risk Management, or Technology Control Testing within the financial services or a similarly regulated industry
  • Strong practical knowledge of IT control frameworks, such as COBIT, NIST Cybersecurity Framework, and ITIL
  • Strong working knowledge of key regulations governing technology and data in financial services, such as Sarbanes-Oxley (SOX), GDPR, DPA and the DORA
  • Demonstrable understanding of the impact of major emerging regulations like the EU AI Act
  • Demonstrable experience testing controls across key IT domains, including cybersecurity, cloud environments (AWS/Azure), DevOps, change management, access management, and IT operations
  • Hands-on experience using GRC platforms (Archer) for control management and testing
  • Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field
Benefits
  • Health insurance
  • Retirement plans
  • Paid time off
  • Flexible work arrangements
  • Professional development

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
IT AuditIT Risk ManagementTechnology Control TestingIT control frameworksCOBITNIST Cybersecurity FrameworkITILcybersecuritycloud environmentsDevOps
Soft skills
communicationcollaborationdocumentationproblem-solvingadvisory