Audit Project Manager – CIO

About The Position

Requirements

• Bachelor's degree, or equivalent work experience
• Typically more than six years of applicable experience
• Knowledge of IT application and general controls is required.
• Advanced understanding of the business line's operations, products/services, systems, and associated risks/controls
• Assess the adequacy of the control environment, identify control gaps and opportunities for continuous improvement based on relevant knowledge and experience
• Ensure delivery of the highest quality reports and value-add recommendations and insights
• Stay current on industry trends and technology related to Cloud, Networking, and Security
• Advanced knowledge of applicable laws, regulations, financial services, and regulatory trends that impact their assigned line of business
• Advanced knowledge of Risk/Compliance/Audit competencies and ability to execute an assignment entirely independently
• Strong process facilitation, project management, and analytical skills
• Must possess business acumen and credibility to help business line(s) proactively identify and address changing workforce needs
• Motivated individual with excellent presentation, interpersonal, written, and verbal communication skills
• Proficient computer navigation skills using a variety of software packages, including Microsoft Office applications and word processing, spreadsheets, databases, and presentations

Nice To Haves

• Some working knowledge of Cloud (PaaS, IaaS, etc.), Application Programming Interface (APIs), Micro Services, Middleware, databases, and DevOps is preferred
• Experience leading multiple audits concurrently and executing all stages of audit successfully
• Experience validating audit and regulatory issues within agreed-upon timeframes
• Proven track record of adapting to a fast-paced environment and effective multi-tasking, being able to manage multiple projects simultaneously
• Critical thinking and problem-solving skills
• Participate in engagement team for assurance engagements involving platforms (AWS Cloud, etc.) and critical software assets across the technology space, as well as advisory engagements consulting on critical technology initiatives
• Experience with major cloud service provider (AWS, GCP, Azure)
• Understanding of Cloud Security Alliance’s Cloud Control Matrix
• Understanding of IAAS technologies hosted on public cloud deployments
• Understanding of DevSecOps and CICD pipeline processes
• Applicable professional certifications preferred (e.g., CISSP, CCSP, CSAK, CCSK, CAMS)

Responsibilities

• Lead complex audit projects that are horizontal in nature and supervise staff in the completion of audit engagements with minimal supervision from managers.
• Monitor progress of audit engagements against plan and schedule.
• Assess work performed by the audit engagement team.
• Provide coaching and on-the-job training for team members to ensure engagements are completed in conformance with internal audit policies and procedures.
• Work as a subject matter expert in a particular topic, helping drive strategy, and may support multiple audit engagements covering the related topics.
• Handle complex tasks autonomously and is able to influence business line understanding of risk mitigation.
• Partner with their assigned Line of Business, other Risk/Compliance/Audit (RCA) professionals, and RCA Managers to create, implement, maintain, review or oversee an effective risk management framework.
• Participate in projects and/or activities that ensure compliance with applicable federal, state and local laws and regulations.
• Identify gaps and inform solutions that minimize losses resulting from inadequate internal processes, systems or human errors.
• Identify, respond and/or escalate risks as appropriate.
• Help support third line assurance efforts relating to a large-scale cloud migration and ongoing support subsequent to the migration.

Benefits

• Healthcare (medical, dental, vision)
• Basic term and optional term life insurance
• Short-term and long-term disability
• Pregnancy disability and parental leave
• 401(k) and employer-funded retirement plan
• Paid vacation (from two to five weeks depending on salary grade and tenure)
• Up to 11 paid holiday opportunities
• Adoption assistance
• Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law