IT Auditor

New York, NY 10017

Posted: 08/23/2018 Industry: Analyst Job Number: 3328190
Vice President, Information Technology AuditResponsibility to lead and execute information technology audits encompassing the areas of IT general controls, application controls, IT processes, project management and data integrity audit projects/initiatives utilizing information technology control frameworks, such as ITIL, COBIT, and FFIEC, or other relevant regulatory guidance (e.G., NYSDFS 500, etc.), where applicable.Job DescriptionEssential functions include: Effectively prepare a well-developed risk-based audit approach and document high quality working papers for information technology and integrated application audits, while ensuring alignment to current regulatory (e.G. FFIEC, NYSDFS 500, etc.) requirements and emerging risks and regulatory expectations. Proactively contribute to the timely updating of auditable entity risk assessments in support of the development and maintenance of the audit plan, while taking in account IT audit standards and frameworks (e.G., ITIL, COBIT, FFIEC, ISO 17799, ISO/IEC 27002, etc.), data security and privacy regulations, emerging regulatory themes, and industry best practices. Stay abreast of industry IT trends to identify potential issues and risks, as well as relevant best practices, laws, rules and regulations impacting financial institutions and ensuring that the changes are incorporated into the audit planning and risk assessment process. Execute high value IT audits, identify risks, assess mitigating controls, determine root causes and make value-add recommendations to improve the control environment through well-developed audit reports. Leverage knowledge of systems and data and perform and document all reviews in a manner consistent with acceptable professional standards, including supporting audit procedures, findings and results. Follow-up on open audit issues and their resolution, review evidence of closure of findings and determine that evidence of remediation is appropriate to effectively mitigate the risks raised. Develop strong collaborative relationships with stakeholders and serve as a trusted advisor while maintaining objectivity and independence in both fact and appearance. Participate in department-wide initiatives and perform other duties as assigned.Minimum Qualifications: Approximately 10+ years of information technology audit experience in financial services and/or public accounting firm. Demonstrated experience in leading and executing all aspects of the audit lifecycle, including planning, risk assessment, scoping, detailed testing and reporting. Strong project management and time management skills, ability to effectively balance competing priorities, and demonstrated success in delivering on-time and on-budget work product. Bachelor's degree in Information Technology, Business, Accounting, Finance or related field is required. Advanced understanding of concepts related to information technology risk and control at all layers of the technology stack, including logical and physical security, system development lifecycle (e.G. Agile and Waterfall), change management, IT operations, business continuity management and network technologies. Strong knowledge of relevant industry frameworks and related regulatory guidance (e.G. COBIT, ITIL, NIST, FFIEC, ISO 27002, etc.) and applicable banking regulations. Demonstrated ability to adapt quickly to changing demands and environment and rapidly develop in-depth knowledge of new audit areas. Excellent verbal and written communication skills and ability to comfortably interact with all levels of management. Ability to employ appropriate tools to enhance the audit process.One of the following certifications is strongly preferred: Certified Information System Auditor (CISA) Certification specific to the information technology industry such as, Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Privacy Professional (CIPP), Certified in the Governance of Enterprise IT (CGEIT), Certified Information Security Manager (CISM).

Caroline Downs
Information Technology Recruiting Manager

Caroline was born and raised in Boston and enjoys working with IT professionals both locally and nationally.

When she's not working, Caroline enjoys Netflix binging and spending time with her Pug.

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.