Audit Project Manager – CIO

U.S. Bank•Minneapolis, MN

11d•$119,765 - $140,900•Hybrid

About The Position

U.S. Bank Corporate Audit Services (CAS) is seeking talented professionals to join its Technology and Operations Services Team as a Senior Audit Project Manager. This role supports the Technology Services Audit team, which provides global audit coverage for multiple technology organizations within USB. The team is responsible for auditing core Technology processes, including application functionality testing, application development, change management, vendor management, interface controls, logical access controls, input/processing/output controls, and business continuity, along with related risks and controls. The Chief Information Office collaborates with various business partners and support functions, including Infrastructure, Technology Transformation, Enterprise Architecture and Engineering, and Data and Digital Technology infrastructure, as well as emerging technologies. The Technology Services Audit Team also conducts thematic, horizontal reviews focused on cloud, data, and emerging technologies.

Requirements

Bachelor's degree, or equivalent work experience.
Typically more than six years of applicable experience.
Knowledge of IT application and general controls is required.
Experience leading multiple audits concurrently and executing all stages of audit successfully.
Experience validating audit and regulatory issues within agreed-upon timeframes.
Proven track record of adapting to a fast-paced environment and effective multi-tasking.
Ability to manage multiple projects simultaneously.
Critical thinking and problem-solving skills.
Advanced understanding of the business line's operations, products/services, systems, and associated risks/controls.
Assess the adequacy of the control environment, identify control gaps and opportunities for continuous improvement based on relevant knowledge and experience.
Ensure delivery of the highest quality reports and value-add recommendations and insights.
Stay current on industry trends and technology related to Cloud, Networking, and Security.
Advanced knowledge of applicable laws, regulations, financial services, and regulatory trends that impact their assigned line of business.
Advanced knowledge of Risk/Compliance/Audit competencies and ability to execute an assignment entirely independently.
Strong process facilitation, project management, and analytical skills.
Must possess business acumen and credibility to help business line(s) proactively identify and address changing workforce needs.
Motivated individual with excellent presentation, interpersonal, written, and verbal communication skills.
Proficient computer navigation skills using a variety of software packages, including Microsoft Office applications and word processing, spreadsheets, databases, and presentations.

Nice To Haves

Some working knowledge of Cloud (PaaS, IaaS, etc.), Application Programming Interface (APIs), Micro Services, Middleware, databases, and DevOps is preferred.
Participate in engagement team for assurance engagements involving platforms (AWS Cloud, etc.) and critical software assets across the technology space, as well as advisory engagements consulting on critical technology initiatives.
Experience with major cloud service provider (AWS, GCP, Azure).
Understanding of Cloud Security Alliance’s Cloud Control Matrix.
Understanding of IAAS technologies hosted on public cloud deployments.
Understanding of DevSecOps and CICD pipeline processes.
Applicable professional certifications preferred (e.g., CISSP, CCSP, CSAK, CCSK, CAMS).

Responsibilities

Lead complex, horizontal audit projects with minimal supervision.
Supervise staff in the completion of audit engagements.
Monitor audit engagement progress against plan and schedule.
Assess work performed by the audit engagement team.
Provide coaching and on-the-job training for team members.
Act as a subject matter expert in specific topics and help drive strategy.
Support multiple audit engagements covering related topics.
Handle complex tasks autonomously and influence business line understanding of risk mitigation.
Partner with assigned Line of Business, other Risk/Compliance/Audit (RCA) professionals, and RCA Managers to create, implement, maintain, review, or oversee an effective risk management framework.
Participate in projects and/or activities that ensure compliance with applicable federal, state, and local laws and regulations.
Identify gaps and inform solutions that minimize losses resulting from inadequate internal processes, systems, or human errors.
Identify, respond to, and/or escalate risks as appropriate.
Support third line assurance efforts related to large-scale cloud migration and ongoing support.

Benefits

Healthcare (medical, dental, vision)
Basic term and optional term life insurance
Short-term and long-term disability
Pregnancy disability and parental leave
401(k) and employer-funded retirement plan
Paid vacation (from two to five weeks depending on salary grade and tenure)
Up to 11 paid holiday opportunities
Adoption assistance
Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
Incentive and recognition programs
Equity stock purchase
401(k) contribution and pension