• Strategic Control Impact
• Identifies meaningdul issues in which controls are not properly designed or are not operating effectively.
• Assesses the risk and control environment for processes within coverage areas.
• Validates the completion of agreed action plans under the guidance of a supervisor.
• Understands the financial services industry and risk and control environment for coverage areas and identifies new risks.
• Works closely with auditees to verify timely progress and completion of agreed action plans.
• Audit Execution
• Assists a Senior IT Auditor or IT Audit Manager with the execution of audit planning, fieldwork and reporting.
• Completes risk-focused fieldwork on time and within the allocated budget, notifying the auditor in charge promptly of issues that arise or when budgets or timelines are at risk.
• Understands and performs root cause analysis for issues; possesses and demonstrates a strong understanding of audit techniques.
• Quality Process
• Demonstrates a strong knowledge of our policies & procedures, particularly work paper documentation standards.
• Independently prepares work papers that fully comply with IAD policies and procedures. Participates in continuous improvement initiatives.
• Aligns risk and control processes into day to day responsibilities to monitor and mitigate risk; escalates appropriately.
• A bachelor’s degree is required, preferably with a technology-related major. Certifications related to the candidate’s coverage responsibilities are beneficial, but not required, such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and Certified Information Systems Security Professional (CISSP).
• Previous job experience for IT Auditors can vary to meet the department’s goal of having a team with diverse perspectives and work experiences.
• Capable of identifying, assessing and advising on risks for large-scale technology projects, IT general controls and completing IT process audits (e.g., SDLC, Change Management, Logical Security, Business Continuity/Disaster Recovery and Incident/Problem Monitoring).
• Proficiency in auditing infrastructure components is a plus (e.g., Mainframe, Unix/Linux, Windows).

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.